![]() (Chromium security severity: Medium) (CVE-2023-0700) - Heap buffer overflow in WebUI in Google Chrome prior to 1.77 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via UI interaction. (Chromium security severity: Medium) (CVE-2023-0699) - Inappropriate implementation in Download in Google Chrome prior to 1.77 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High) (CVE-2023-0698) - Use after free in GPU in Google Chrome prior to 1.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page and browser shutdown. (Chromium security severity: High) (CVE-2023-0697) - Out of bounds read in WebRTC in Google Chrome prior to 1.77 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) (CVE-2023-0696) - Inappropriate implementation in Full screen mode in Google Chrome on Android prior to 1.77 allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page. Type confusion in V8 in Google Chrome prior to 1.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. It is, therefore, affected by multiple vulnerabilities as referenced in the Februadvisory. Description The version of Microsoft Edge installed on the remote Windows host is prior to 1.41. Synopsis The remote host has an web browser installed that is affected by multiple vulnerabilities.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |