‼ CVE-2023-4355 ‼
📖 Read
via "National Vulnerability Database".
Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38861 ‼
📖 Read
via "National Vulnerability Database".
An issue in Wavlink WL_WNJ575A3 v.R75A3_V1410_220513 allows a remote attacker to execute arbitrary code via username parameter of the set_sys_adm function in adm.cgi.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4333 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4332 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4352 ‼
📖 Read
via "National Vulnerability Database".
Type confusion in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4330 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable Denial of Service can be caused by an authenticated user to the REST API Interface📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4351 ‼
📖 Read
via "National Vulnerability Database".
Use after free in Network in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has elicited a browser shutdown to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4336 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4338 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4324 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4329 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4339 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM stored with insecure file permissions📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4353 ‼
📖 Read
via "National Vulnerability Database".
Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4325 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilities📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4341 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of insecure folders by Web GUI📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4326 ‼
📖 Read
via "National Vulnerability Database".
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4369 ‼
📖 Read
via "National Vulnerability Database".
Insufficient data validation in Systems Extensions in Google Chrome on ChromeOS prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass file restrictions via a crafted HTML page. (Chromium security severity: Medium)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4364 ‼
📖 Read
via "National Vulnerability Database".
Inappropriate implementation in Permission Prompts in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4363 ‼
📖 Read
via "National Vulnerability Database".
Inappropriate implementation in WebShare in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to spoof the contents of a dialog URL via a crafted HTML page. (Chromium security severity: Medium)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4366 ‼
📖 Read
via "National Vulnerability Database".
Use after free in Extensions in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4365 ‼
📖 Read
via "National Vulnerability Database".
Inappropriate implementation in Fullscreen in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)📖 Read
via "National Vulnerability Database".
❤1