Page 70 of 2778 results (0.006 seconds)

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to obtain potentially sensitive information via a crafted HTML page. Una implementación inapropiada de Autofill en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto obtener información potencialmente confidencial por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of servi... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •

CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Incorrect security UI in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación incorrecta de la Interfaz de seguridad en Autofill en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto falsificar el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arb... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to incorrectly set origin via a crafted HTML page. Una implementación inapropiada en Navigation en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto establecer incorrectamente el origen por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclos... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-346: Origin Validation Error •

CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Incorrect security UI in Browser UI in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to display missing URL or incorrect URL via a crafted URL. Una implementación incorrecta de la Interfaz de seguridad en Browser UI en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto mostrar una URL que faltaba o una URL incorrecta por medio de una URL diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial o... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Inappropriate implementation in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en Blink en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-346: Origin Validation Error •

CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Out of bounds memory access in Blink Serial API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page and virtual serial port driver. Un acceso a la memoria fuera de límites en Blink Serial API en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto llevar a cabo una lectura de memoria fuera de límites por medio de una página HTML diseñada y un controlador de puerto serie virtual Multiple security issues w... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-125: Out-of-bounds Read •

CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 2

28 Jan 2022 — Uninitialized use in File API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Un uso no inicializado en File API en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto llevar a cabo un acceso a la memoria fuera de límites por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or ... • https://packetstorm.news/files/id/165879 • CWE-908: Use of Uninitialized Resource •

CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Inappropriate implementation in Compositing in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación inapropiada de Compositing en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto falsificar el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, d... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Policy bypass in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una omisión de políticas en Blink en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-863: Incorrect Authorization •

CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1

28 Jan 2022 — Inappropriate implementation in WebShare in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially hide the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación inapropiada de WebShare en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto ocultar potencialmente el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of ... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •