βΌ CVE-2023-20634 βΌ
π Read
via "National Vulnerability Database".
In widevine, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07635697; Issue ID: ALPS07635697.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1219 βΌ
π Read
via "National Vulnerability Database".
Heap buffer overflow in Metrics in Google Chrome prior to 111.0.5563.64 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)π Read
via "National Vulnerability Database".
βΌ CVE-2023-1229 βΌ
π Read
via "National Vulnerability Database".
Inappropriate implementation in Permission prompts in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)π Read
via "National Vulnerability Database".
βΌ CVE-2023-20646 βΌ
π Read
via "National Vulnerability Database".
In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628536; Issue ID: ALPS07628536.π Read
via "National Vulnerability Database".
βΌ CVE-2023-20635 βΌ
π Read
via "National Vulnerability Database".
In keyinstall, there is a possible information disclosure due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07563028; Issue ID: ALPS07563028.π Read
via "National Vulnerability Database".
βΌ CVE-2023-20633 βΌ
π Read
via "National Vulnerability Database".
In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628508; Issue ID: ALPS07628508.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1222 βΌ
π Read
via "National Vulnerability Database".
Heap buffer overflow in Web Audio API in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)π Read
via "National Vulnerability Database".
βΌ CVE-2023-20638 βΌ
π Read
via "National Vulnerability Database".
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628537; Issue ID: ALPS07628537.π Read
via "National Vulnerability Database".
βΌ CVE-2023-20650 βΌ
π Read
via "National Vulnerability Database".
In apu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629577; Issue ID: ALPS07629577.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1263 βΌ
π Read
via "National Vulnerability Database".
The CMP Γ’β¬β Coming Soon & Maintenance plugin for WordPress is vulnerable to Information Exposure in versions up to, and including, 4.1.6 via the cmp_get_post_detail function. This can allow unauthenticated individuals to obtain the contents of any non-password-protected, published post or page even when maintenance mode is enabled.π Read
via "National Vulnerability Database".
βοΈ Sued by Meta, Freenom Halts Domain Registrations βοΈ
π Read
via "Krebs on Security".
The domain name registrar Freenom, whose free domain names have long been a draw for spammers and phishers, has stopped allowing new domain name registrations. The move comes just days after the Dutch registrar was sued by Meta, which alleges the company ignores abuse complaints about phishing websites while monetizing traffic to those abusive domains.π Read
via "Krebs on Security".
Krebs on Security
Sued by Meta, Freenom Halts Domain Registrations
The domain name registrar Freenom, whose free domain names have long been a draw for spammers and phishers, has stopped allowing new domain name registrations. The move comes just days after the Dutch registrar was sued by Meta, which allegesβ¦
π1
βΌ CVE-2021-23220 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2021.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26087 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2022.π Read
via "National Vulnerability Database".
βΌ CVE-2023-24780 βΌ
π Read
via "National Vulnerability Database".
Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/columns.π Read
via "National Vulnerability Database".
βΌ CVE-2022-25889 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2022.π Read
via "National Vulnerability Database".
βΌ CVE-2021-26246 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2021.π Read
via "National Vulnerability Database".
βΌ CVE-2022-25920 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2022.π Read
via "National Vulnerability Database".
βΌ CVE-2022-21224 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2022.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26058 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2022.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26347 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2022.π Read
via "National Vulnerability Database".
βΌ CVE-2022-25968 βΌ
π Read
via "National Vulnerability Database".
This candidate was in a CNA pool that was not assigned to any issues during 2022.π Read
via "National Vulnerability Database".