Lucene search
K

131 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-15765

Malware in sbrugna...

7.4CVSS6.8AI score0.01436EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:44 a.m.31 views

CVE-2024-23226

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing web content may lead to arbitrary code execution...

8.8CVSS7.3AI score0.01198EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/09/25 4:12 p.m.23 views

CVE-2024-44187

A vulnerability was found in WebKit. This flaw allows a remote attacker to exfiltrate data cross-origin by convincing a victim to visit a specially crafted website, which results in obtaining sensitive information. Mitigation Mitigation for this issue is either not available or the currently...

6.5CVSS6.6AI score0.00638EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/03/19 1:32 p.m.31 views

CVE-2024-23284

A flaw was found in WebKit. This flaw allows remote attackers to bypass security restrictions due to a logic flaw by persuading a victim to access a specially crafted website, enabling attackers to circumvent the Content Security Policy enforcement...

6.5CVSS7.4AI score0.01486EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/03/19 1:32 p.m.28 views

CVE-2024-23263

A flaw was found in WebKit. This flaw allows remote attackers to bypass security restrictions due to a logic issue by convincing a victim to visit a specially crafted website. This results in the attacker evading the Content Security Policy enforcement...

6.5CVSS7.4AI score0.01496EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/03/19 1:24 p.m.37 views

CVE-2024-23254

A vulnerability was found in WebKit, where a remote attacker is able to exfiltrate audio data cross-origin by convincing a victim to visit a specially crafted website, which results in obtaining sensitive information...

6.5CVSS8AI score0.01253EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/03/19 1:24 p.m.23 views

CVE-2024-23252

A flaw was found in WebKit. This flaw allows an attacker to trigger a denial of service condition by convincing a victim to visit a specially crafted website...

6.5CVSS7.2AI score
Exploits0References4
NVD
NVD
added 2022/08/23 6:15 p.m.16 views

CVE-2022-1513

A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website...

8.8CVSS0.0047EPSS
Exploits0References1
OSV
OSV
added 2022/08/23 6:15 p.m.3 views

CVE-2022-1513

A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website...

8.8CVSS6.2AI score0.0047EPSS
Exploits0References1
Prion
Prion
added 2022/08/23 6:15 p.m.18 views

Code injection

A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website...

6.8CVSS8.7AI score0.0047EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2021/11/09 6:30 p.m.5 views

webkitgtk: Integer overflow leading to arbitrary code execution

A flaw was found in the webkitgtk package. Affected versions of this package could allow a remote attacker to execute arbitrary code on the system caused by an integer overflow in the WebKit component. An attacker can execute arbitrary code on the system by persuading a victim to visit a speciall...

8.8CVSS7.8AI score0.0369EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2021/08/25 12:0 a.m.6 views

The vulnerability of the Google Chrome browser’s printing function allows a hacker to execute arbitrary code.

The vulnerability of the Google Chrome browser’s printing function is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created website...

10CVSS7.2AI score0.02539EPSS
Exploits1References9Affected Software4
RedhatCVE
RedhatCVE
added 2021/07/28 1:54 p.m.41 views

CVE-2021-30762

A flaw was found in the webkitgtk package. Affected versions of this package could allow a remote attacker to execute arbitrary code on the system caused by a use-after-free in the WebKit component. By persuading a victim to visit a specially crafted Web site, an attacker can execute arbitrary co...

8.8CVSS8.1AI score0.10986EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2021/07/28 1:53 p.m.53 views

CVE-2021-30761

A flaw was found in the webkitgtk package. Affected versions of this package could allow a remote attacker to execute arbitrary code on the system caused by memory corruption in the WebKit component. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this...

8.8CVSS7.4AI score0.10591EPSS
Exploits0References5
CNVD
CNVD
added 2021/07/19 12:0 a.m.26 views

Microsoft Visual Studio Spoofing Vulnerability (CNVD-2021-54406)

Microsoft Visual Studio is a family of development tools from Microsoft Corporation USA and is a largely complete development toolset that includes most of the tools needed throughout the software lifecycle. An attacker could exploit this vulnerability with a specially crafted website to spoof...

7.8CVSS2.6AI score0.0314EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/20 12:0 a.m.1 views

Google Chrome Security Bypass Vulnerability (CNVD-2020-29298)

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome prior to version 83.0.4103.61, which stems from the program's failure to fully enforce policies. The vulnerability can be exploited by an attacker to bypass security restrictions with...

6.5CVSS8.8AI score0.01224EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2020/05/12 7:0 a.m.75 views

Microsoft Color Management Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Color Management Module ICM32.dll handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data;...

9.3CVSS2.5AI score0.11249EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/04/14 7:0 a.m.28 views

GDI+ Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or dele...

9.3CVSS8.8AI score0.16701EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/04/14 12:0 a.m.5 views

Vulnerabilities of operating systems such as openSUSE Leap, Mac OS X, iOS, tvOS, watchOS, the browser Safari, the multimedia player iTunes, and the iCloud service can be exploited when operations occur outside of the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerabilities of the operating systems openSUSE Leap, Mac OS X, iOS, tvOS, watchOS, the browser Safari, the multimedia player iTunes, and the iCloud service are due to operations that go beyond the buffer limits in memory. Exploiting these vulnerabilities allows a malicious actor to execute...

9.3CVSS7.7AI score0.02482EPSS
Exploits0References11Affected Software15
Microsoft CVE
Microsoft CVE
added 2020/01/17 8:0 a.m.74 views

Microsoft Guidance on Scripting Engine Memory Corruption Vulnerability

Important Microsoft has completed the investigation into a public report of this vulnerability. We have issued CVE-2020-0674 - Scripting Engine Memory Corruption Vulnerability to address this vulnerability. For more information about this issue, including download links for an available security...

7.6CVSS8.1AI score0.86863EPSS
Exploits17
Rows per page
Query Builder