11 matches found
EUVD-2018-4376
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-15423
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in BoringSSL SPAKE2 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak the low-order bits of SHA512password b...
Mozilla Firefox and Firefox ESR Memory Corruption Vulnerability (CNVD-2018-25863)
Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A security vulnerability exists in Mozilla Firefox version 63 and Firefox ESR version 60.3. An...
Mozilla Firefox Mixed Content Vulnerability
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 63. A remote attacker could exploit this vulnerability to cause the mixed content warning to fail to display...
Mozilla Firefox SameSite cookie leakage vulnerability
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 63. A remote attacker can exploit the vulnerability to disclose SameSite cookies...
Mozilla Firefox Denial of Service Vulnerability (CNVD-2018-21847)
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 63. A remote attacker could exploit this vulnerability to cause a denial of service...
Mozilla Firefox Security Advisories (MFSA2018-25, MFSA2018-27) - Windows
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
Google Chrome Chromecast Unauthorized Access Vulnerability
Google Chrome is a web browser developed by Google, Inc.Chromecast is one of the plug-ins for connecting to your TV. A security vulnerability exists in Chromecast in versions prior to Google Chrome 63.0.3239.84, which stems from the program performing insecure navigation. A remote attacker could...
UBUNTU-CVE-2017-15427
Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a socially engineered user to XSS themselves by dragging and dropping a javascript: URL into the URL bar...
chromium-browser: cross origin leak of redirect url in blink
Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page...
chromium-browser: use after free in pdfium
Use after free in PDFium in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...