Lucene search
K

50 matches found

NVD
NVD
added 2023/03/07 10:15 p.m.17 views

CVE-2023-1224

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4AI score0.00444EPSS
Exploits0References2
OSV
OSV
added 2023/03/07 10:15 p.m.21 views

CVE-2023-1224

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.2AI score
Exploits0References2
OSV
OSV
added 2023/03/07 10:15 p.m.5 views

UBUNTU-CVE-2023-1224

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.2AI score0.00444EPSS
Exploits0References5
Prion
Prion
added 2023/03/07 10:15 p.m.25 views

Design/Logic Flaw

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.3AI score0.00459EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2023/03/07 10:15 p.m.33 views

CVE-2023-1224

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.3AI score0.00444EPSS
Exploits0References4
OSV
OSV
added 2023/03/07 10:15 p.m.2 views

UBUNTU-CVE-2023-1226

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00459EPSS
Exploits0References5
CVE
CVE
added 2023/03/07 9:42 p.m.249 views

CVE-2023-1224

CVE-2023-1224 affects Google Chrome/Chromium Web Payments API prior to 111.0.5563.64, where insufficient policy enforcement allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. The issue originates from Chromium Web Payments policy enforcement and results in an abi...

4.3CVSS4AI score0.00444EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/03/07 9:42 p.m.129 views

CVE-2023-1226

The CVE-2023-1226 entry concerns Google Chrome’s Web Payments API: insufficient policy enforcement allowed CSP bypass via a crafted HTML page, affecting Chromium prior to 111.0.5563.64. The Connected Astra Linux bulletin mirrors this Chrome vulnerability. The impact is a bypass of content securit...

6.5CVSS5.8AI score0.00459EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2023/03/07 9:42 p.m.35 views

CVE-2023-1226

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS7.4AI score0.00459EPSS
Exploits0
Debian CVE
Debian CVE
added 2023/03/07 9:42 p.m.30 views

CVE-2023-1224

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.3AI score0.00444EPSS
Exploits0
Cvelist
Cvelist
added 2023/03/07 9:42 p.m.27 views

CVE-2023-1226

Insufficient policy enforcement in Web Payments API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.9AI score0.00459EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/02/27 12:0 a.m.32 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2023:0061-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0061-1 advisory. - Use after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allowed a remote attacker who had compromised the render...

8.8CVSS8.6AI score0.00668EPSS
Exploits0References18
Microsoft CVE
Microsoft CVE
added 2023/02/25 8:0 a.m.34 views

Chromium: CVE-2023-0927 Use after free in Web Payments API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.7AI score0.00579EPSS
Exploits0
Kaspersky
Kaspersky
added 2023/02/25 12:0 a.m.38 views

KLA40224 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Video can be exploited to execute arbitrary code or cause...

8.8CVSS10AI score0.00668EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/24 3:7 a.m.2 views

SUSE CVE-2023-0927

Use after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.3AI score0.00579EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/02/23 12:0 a.m.45 views

FreeBSD : chromium -- multiple vulnerabilities (4d6b5ea9-bc64-4e77-a7ee-d62ba68a80dd)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4d6b5ea9-bc64-4e77-a7ee-d62ba68a80dd advisory. - Use after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allow...

8.8CVSS8.5AI score0.00668EPSS
Exploits0References10
OSV
OSV
added 2023/02/22 8:15 p.m.3 views

DEBIAN-CVE-2023-0927

Use after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.2AI score0.00579EPSS
Exploits0References1
NVD
NVD
added 2023/02/22 8:15 p.m.14 views

CVE-2023-0927

Use after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.9AI score0.00579EPSS
Exploits0References3
Prion
Prion
added 2023/02/22 8:15 p.m.31 views

Design/Logic Flaw

Use after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6.8CVSS8.7AI score0.00579EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2023/02/22 8:15 p.m.26 views

CVE-2023-0927

Use after free in Web Payments API in Google Chrome on Android prior to 110.0.5481.177 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00579EPSS
Exploits0References3
Rows per page
Query Builder