CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7550
https://notcve.org/view.php?id=CVE-2024-7550
Type Confusion in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. • https://chromereleases.googleblog.com/2024/08/stable-channel-update-for-desktop.html https://issues.chromium.org/issues/355256380 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-7520 – mozilla: Type confusion in WebAssembly
https://notcve.org/view.php?id=CVE-2024-7520
A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. ... A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. ... The Mozilla Foundation Security Advisory describes this flaw as: A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. • https://bugzilla.mozilla.org/show_bug.cgi?id=1903041 https://www.mozilla.org/security/advisories/mfsa2024-33 https://www.mozilla.org/security/advisories/mfsa2024-35 https://www.mozilla.org/security/advisories/mfsa2024-37 https://access.redhat.com/security/cve/CVE-2024-7520 https://bugzilla.redhat.com/show_bug.cgi?id=2303137 •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-40803
https://notcve.org/view.php?id=CVE-2024-40803
A type confusion issue was addressed with improved checks. • https://support.apple.com/en-us/HT214120 https://support.apple.com/en-us/HT214119 https://support.apple.com/en-us/HT214118 http://seclists.org/fulldisclosure/2024/Jul/20 http://seclists.org/fulldisclosure/2024/Jul/18 http://seclists.org/fulldisclosure/2024/Jul/19 •
CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-40788
https://notcve.org/view.php?id=CVE-2024-40788
A type confusion issue was addressed with improved memory handling. • https://support.apple.com/en-us/HT214117 https://support.apple.com/en-us/HT214116 https://support.apple.com/en-us/HT214120 https://support.apple.com/en-us/HT214124 https://support.apple.com/en-us/HT214119 https://support.apple.com/en-us/HT214123 https://support.apple.com/en-us/HT214122 https://support.apple.com/en-us/HT214118 http://seclists.org/fulldisclosure/2024/Jul/16 http://seclists.org/fulldisclosure/2024/Jul/23 http://seclists.org/fulldisclosure/2024/J • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-40626 – Stored Cross-site Scripting (XSS) vulnerability in Outline editor
https://notcve.org/view.php?id=CVE-2024-40626
A type confusion issue was found in ProseMirror’s rendering process that leads to a Stored Cross-Site Scripting (XSS) vulnerability in Outline. • https://github.com/outline/outline/security/advisories/GHSA-888c-mvg8-v6wh • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •