The vulnerability of the user interface of ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security Premium, ESET Endpoint Antivirus, ESET Endpoint Security, ESET Server Security for Microsoft Windows Server, ESET File Security for Microsoft Windows Server, ESET Mail Security for Microsoft Exchange Server, ESET Mail Security for IBM Domino, and ESET Security for Microsoft SharePoint Server allows attackers to increase their privileges.

The vulnerability of the user interface of ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security Premium, ESET Endpoint Antivirus, ESET Endpoint Security, ESET Server Security for Microsoft Windows Server, ESET File Security for Microsoft Windows Server, ESET Mail Security for Microso...

Cross site scripting

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager EPNM could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. The...

CVE-2023-20242

A vulnerability in the web-based management interface of Cisco Unified Communications Manager Unified CM, Cisco Unified CM Session Management Edition Unified CM SME, and Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P could allow an unauthenticated, remote attacker to...

SUSE CVE-2023-4362

Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

Jenkins Plugin Flaky Test Handler 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site scripting...

DEBIAN-CVE-2023-4364

Inappropriate implementation in Permission Prompts in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. Chromium security severity: Medium...

PT-2023-4775 · Microsoft · Office Onenote

Name of the Vulnerable Software and Affected Versions: Microsoft OneNote affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, which can be exploited by a remote attacker to conduct spoofing attacks. This allows...

Google Chrome 安全漏洞

Google Chrome is a web browser by Google, Inc. A security vulnerability exists in Google Chrome prior to version 116.0.5845.96, which stems from an improper implementation of the application launcher and allows remote attackers to spoof secure UI elements via a crafted HTML page...

PT-2023-4479 · Google +3 · Google Chrome +3

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 116.0.5845.96 Description: The issue is related to an inappropriate implementation in Color, allowing a remote attacker to obfuscate security UI via a crafted HTML page. This could enable the attacker to bypass...

The vulnerability of Microsoft Exchange Server, related to errors in information presentation on the user interface, allows attackers to perform spoofing attacks.

The vulnerability of Microsoft Exchange Server is related to errors in information representation by the user interface. Exploiting this vulnerability can allow a malicious actor to perform a spoofing attack remotely...

Huawei EMUI Security Vulnerability

Huawei EMUI is an Android-based mobile operating system developed by Chinese company Huawei Huawei. A security vulnerability exists in Huawei EMUI version 13.0.0, EMUI 12.0.0, and EMUI 11.0.1, which stems from an issue with permission control in the XLayout component...

The vulnerability of the Microsoft Outlook email client, related to errors in information presentation by the user interface, allows a hacker to perform a spoofing attack.

The vulnerability of the Microsoft Outlook email client is related to information representation errors in the user interface. Exploiting this vulnerability can allow a malicious actor to perform a spoofing attack remotely...

The vulnerability of Google Chrome’s user interface allows a perpetrator to read and write arbitrary files.

The vulnerability of Google Chrome’s user interface is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to read and write arbitrary files using a specially crafted HTML page...

The vulnerability of Google Chrome’s URL formatting mechanism, which allows attackers to carry out spoofing attacks

The vulnerability of Google Chrome’s URL formatting mechanism is related to errors in information representation by the user interface. Exploiting this vulnerability allows a malicious actor to carry out spoofing attacks using a specially crafted HTML page...

The vulnerability of Blink’s web page display mechanism in Google Chrome browser allows a hacker to replace the user interface.

The vulnerability of Blink’s web page rendering mechanism in Google Chrome browsers is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to replace the user interface with a specially crafted HTML page...

The vulnerability of Microsoft SharePoint Server’s software packages, related to errors in information presentation on the user interface, allows attackers to perform spoofing attacks.

The vulnerability of Microsoft SharePoint Server packages is related to errors in information presentation by the user interface. Exploiting this vulnerability can allow a malicious actor to perform a spoofing attack remotely...

Controller: Html injection in custom login info

An HTML injection flaw was found in Controller in the user interface settings. This flaw allows an attacker to capture credentials by creating a custom login page by injecting HTML, resulting in a complete compromise...

Microsoft Windows Multiple Vulnerabilities (KB5029253)

This host is missing an important security update according to Microsoft KB5029253 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2023-36898

Tablet Windows User Interface Application Core Remote Code Execution Vulnerability...

CVE-2023-36898

Tablet Windows User Interface Application Core Remote Code Execution Vulnerability...