15 matches found
PT-2023-36038 · Icu · Icu
Name of the Vulnerable Software and Affected Versions: icu 74 affected versions not specified Description: The issue is related to a crash in the icu 74 library, specifically in the UnicodeString class. The crash occurs when the copyFrom function is called, leading to a segmentation fault on an...
PT-2023-36019 · Icu · Icu
Name of the Vulnerable Software and Affected Versions: icu 74 affected versions not specified Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash indicate it occurs in the icu 74::SimpleDateFormat class, specifically in the subFormat, format,...
SUSE CVE-2019-5808
Use after free in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
UBUNTU-CVE-2020-6503
Inappropriate implementation in accessibility in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...
UBUNTU-CVE-2020-6504
Insufficient policy enforcement in notifications in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass notification restrictions via a crafted HTML page...
Mozilla Firefox Code Execution Vulnerability (CNVD-2020-22306)
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox version 74. An attack could exploit the vulnerability to corrupt memory or possibly execute arbitrary code...
Mozilla Firefox Security Advisories (MFSA2020-08, MFSA2020-09) - Mac OS X
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
Code injection
cPanel before 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API SEC-444...
CVE-2019-5827
Integer overflow in SQLite via WebSQL in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
DEBIAN-CVE-2019-5814
Insufficient policy enforcement in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to leak cross-origin data via a crafted HTML page...
UBUNTU-CVE-2019-5823
Insufficient policy enforcement in service workers in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...
chromium-browser: parameter passing error in media player leading to unauthorized access
Parameter passing error in media in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
chromium-browser: Integer overflow in PDFium
Integer overflow in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...
Google Chrome Media Player Out-of-Bounds Access Vulnerability
Google Chrome is a web browser from Google, an American company. A security vulnerability exists in the media player in versions prior to Google Chrome 74.0.3729.131. An attacker can exploit this vulnerability by tricking a user into visiting a specially crafted website to bypass security...
Google Chrome Blink System Unauthorized Access Vulnerability (CNVD-2019-23115)
Google Chrome is a Web browser from Google, a U.S. company. Blink is a browser layout engine rendering engine jointly developed by Google and Norway's OperaSoftware. An unauthorized access vulnerability exists in Blink in versions of Google Chrome prior to 74.0.3729.108. An attacker can exploit...