12 matches found
Fedora 38 : chromium (2023-f8e94641dc)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-f8e94641dc advisory. update to 116.0.5845.96. Fixes following security issues: CVE-2023-2312 CVE-2023-4349 CVE-2023-4350 CVE-2023-4351 CVE-2023-4352 CVE-2023-4353...
Google Chrome Input Validation Error Vulnerability (CNVD-2023-65155)
Google Chrome is a web browser from Google, an American company. An input validation error vulnerability exists in Google Chrome prior to version 116.0.5845.96, which stems from insufficient input validation in XML, and can be exploited by remote attackers to bypass file access restrictions via a...
DEBIAN-CVE-2023-4356
Use after free in Audio in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...
DEBIAN-CVE-2023-4350
Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to potentially spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: High...
DEBIAN-CVE-2023-4354
Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
Google Chrome 安全漏洞
Google Chrome is a web browser by Google, Inc. A security vulnerability exists in Google Chrome prior to version 116.0.5845.96, which stems from an improper implementation of the application launcher and allows remote attackers to spoof secure UI elements via a crafted HTML page...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in versions prior to Google Chrome 116.0.5845.96, which originates from the presence of post-release reuse on the network and allows remote attackers to cause the browser to shut down via a...
Google Chrome < 116.0.5845.96 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 116.0.5845.96. It is, therefore, affected by multiple vulnerabilities as referenced in the 202308stable-channel-update-for-desktop15 advisory. - Insufficient policy enforcement in Extensions API in Google Chrome prior t...
PT-2023-4486 · Google +3 · Google Chrome +3
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 116.0.5845.96 Description: The issue is related to an inappropriate implementation in the Fullscreen feature of Google Chrome, which allows a remote attacker to obfuscate security UI via a crafted HTML page. Th...
PT-2023-4470 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome on Android versions prior to 116.0.5845.96 Description: The issue is related to an inappropriate implementation in the Autofill function of Google Chrome on Android, which can be exploited by a remote attacker to bypass existing...
PT-2023-4476 · Google +3 · Google Chrome +4
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 116.0.5845.96 Description: The issue is related to an out of bounds memory access in V8, a component of Google Chrome, which could allow a remote attacker to potentially exploit heap corruption via a crafted HT...
PT-2023-4477 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome on Android versions prior to 116.0.5845.96 Description: The issue is related to a use after free in the Offline mode of Google Chrome on Android, which could allow a remote attacker who has compromised the renderer process to...