Lucene search
K

10966 matches found

Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.44 views

openSUSE Security Update : chromium (openSUSE-2021-173)

This update for chromium fixes the following issues : chromium was updated to 88.0.4324.96 boo1181137 - CVE-2021-21117: Insufficient policy enforcement in Cryptohome - CVE-2021-21118: Insufficient data validation in V8 - CVE-2021-21119: Use after free in Media - CVE-2021-21120: Use after free in...

9.6CVSS8AI score0.23406EPSS
Exploits4References27
OPENSUSE Linux
OPENSUSE Linux
added 2021/01/29 12:0 a.m.44 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0186-1 Rating: important References: 1181137 Cross-References: CVE-2020-16044 CVE-2021-21117 CVE-2021-21118 CVE-2021-21119 CVE-2021-21120 CVE-2021-21121 CVE-2021-21122 CVE-2021-21123 CVE-2021-21124...

9.6CVSS6.9AI score0.23406EPSS
Exploits4References1
Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.45 views

openSUSE Security Update : chromium (openSUSE-2021-166)

This update for chromium fixes the following issues : Chromium was updated to 88.0.4324.96 boo1181137 - CVE-2021-21117: Insufficient policy enforcement in Cryptohome - CVE-2021-21118: Insufficient data validation in V8 - CVE-2021-21119: Use after free in Media - CVE-2021-21120: Use after free in...

9.6CVSS8AI score0.23406EPSS
Exploits4References27
OPENSUSE Linux
OPENSUSE Linux
added 2021/01/27 12:0 a.m.49 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0173-1 Rating: important References: 1181137 Cross-References: CVE-2020-16044 CVE-2021-21117 CVE-2021-21118 CVE-2021-21119 CVE-2021-21120 CVE-2021-21121 CVE-2021-21122 CVE-2021-21123 CVE-2021-21124...

9.6CVSS6.9AI score0.23406EPSS
Exploits4References1
OPENSUSE Linux
OPENSUSE Linux
added 2021/01/26 12:0 a.m.43 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0166-1 Rating: important References: 1181137 Cross-References: CVE-2020-16044 CVE-2021-21117 CVE-2021-21118 CVE-2021-21119 CVE-2021-21120 CVE-2021-21121 CVE-2021-21122 CVE-2021-21123 CVE-2021-21124...

9.6CVSS6.9AI score0.23406EPSS
Exploits4References1
Tenable Nessus
Tenable Nessus
added 2021/01/25 12:0 a.m.40 views

FreeBSD : chromium -- multiple vulnerabilities (4ed0e43c-5cef-11eb-bafd-3065ec8fd3ec)

Chrome Releases reports : This release contains 36 security fixes, including : - 1137179 Critical CVE-2021-21117: Insufficient policy enforcement in Cryptohome. Reported by Rory McNamara on 2020-10-10 - 1161357 High CVE-2021-21118: Insufficient data validation in V8. Reported by Tyler Nighswander...

9.6CVSS8.1AI score0.23406EPSS
Exploits4References28
Veracode
Veracode
added 2021/01/22 9:31 p.m.29 views

Authorization Bypass

chromium is vulnerable to authorization bypass. An insufficient policy enforcement flaw in the WebView component allows an attacker to bypass access controls...

6.5CVSS4.9AI score0.04175EPSS
Exploits0References5Affected Software1
Hacker One
Hacker One
added 2021/01/21 9:57 a.m.39 views

LY Corporation: Webview address bar spoofing in LINE client for iOS

When navigation to an invalid hostname occurs, the address bar is updated even though the navigation is cancelled. Due to this incorrect timing of updating the address bar and applying URL normalization, it can be recognized as a different hostname from the actual hostname. As a result, attacker...

5CVSS5.2AI score0.00751EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/21 8:0 a.m.43 views

Chromium CVE-2021-21136: Insufficient policy enforcement in WebView

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.6AI score0.04175EPSS
Exploits0
CNVD
CNVD
added 2021/01/20 12:0 a.m.7 views

Google Chrome WebView Policy Enforcement Deficiency Vulnerability

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A WebView Policy Enforcement Insufficiency vulnerability exists in versions of Google Chrome prior to 88.0.4324.96. An attacker can exploit this vulnerability to le...

6.5CVSS5.8AI score0.04175EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/20 12:0 a.m.4 views

Google Chrome 访问控制错误漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A WebView Policy Enforcement Insufficiency vulnerability exists in versions of Google Chrome prior to 88.0.4324.96. An attacker can exploit this vulnerability to le...

6.5CVSS6.9AI score0.04175EPSS
Exploits0References7
CNVD
CNVD
added 2021/01/16 12:0 a.m.3 views

WebView Vulnerability in X Browser

X Browser is a mobile browser for the Android platform. X Browser has a WebView vulnerability that can be exploited by an attacker to execute JS code across domains and take full control of a user's browser...

7.5AI score
Exploits0
Hacker One
Hacker One
added 2020/12/23 9:47 p.m.48 views

TikTok: Multiple bugs leads to RCE on TikTok for Android

A series of WebView vulnerabilities were found including XSS which could have potentially led an attacker to achieve remote code execution. We thank @dphoeniixx for reporting this to our team and verifying the resolution!...

2.9AI score
Exploits0
Veracode
Veracode
added 2020/12/21 7:50 p.m.26 views

Information Disclosure

chromium is vulnerable to information disclosure. Inappropriate implementation in WebView allows a remote attacker to leak cross-origin data via a malicious HTML page...

6.5CVSS2.4AI score0.01015EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2020/12/18 9:15 a.m.4 views

CVE-2020-35554

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. There is a WebView SSL error-handler vulnerability. The LG ID is LVE-SMP-200026 December 2020...

7.8CVSS7.1AI score0.00135EPSS
Exploits0References1
NVD
NVD
added 2020/12/18 9:15 a.m.24 views

CVE-2020-35554

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. There is a WebView SSL error-handler vulnerability. The LG ID is LVE-SMP-200026 December 2020...

7.8CVSS7.7AI score0.00135EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/12/18 8:44 a.m.37 views

CVE-2020-35554

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. There is a WebView SSL error-handler vulnerability. The LG ID is LVE-SMP-200026 December 2020...

7.7AI score0.00135EPSS
Exploits0References1
CVE
CVE
added 2020/12/18 8:44 a.m.57 views

CVE-2020-35554

CVE-2020-35554 affects LG mobile devices running Android 8.x–10 with a WebView SSL error-handler vulnerability. The issue is described as an SSL handling weakness in WebView, linked to LG’s internal identifier LVE-SMP-200026 (December 2020). Connected sources corroborate the vulnerability across ...

7.8CVSS7.6AI score0.00135EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2020/12/18 12:0 a.m.5 views

LG mobile security breach

LG mobile is a mobile device from LG Corporation A security vulnerability exists in LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software that originates from a WebView SSL error handling...

7.8CVSS7.1AI score0.00135EPSS
Exploits0References2
CNVD
CNVD
added 2020/12/11 12:0 a.m.2 views

Logic Flaw Vulnerability in WebView JsBridge

WebView is the term that refers to the web page view. It can be embedded in the mobile terminal to realize the front-end of the hybrid development, most of the hybrid development framework is based on the WebView mode for secondary development. WebView JsBridge has a logic flaw vulnerability that...

6.7AI score
Exploits0
Rows per page
Query Builder