7.8

CVSS3.1

CVE-2024-49508 - InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions ID18.5.2, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

๐Ÿ“… Published: Nov. 12, 2024, 8:45 p.m. ๐Ÿ”„ Last Modified: Nov. 16, 2024, 12:33 a.m.

4.3

CVSS3.1

CVE-2024-11117 -

Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Low)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 5:57 p.m.

4.3

CVSS3.1

CVE-2024-11116 -

Inappropriate implementation in Blink in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 5:58 p.m.

8.8

CVSS3.1

CVE-2024-11115 -

Insufficient policy enforcement in Navigation in Google Chrome on iOS prior to 131.0.6778.69 allowed a remote attacker to perform privilege escalation via a series of UI gestures. (Chromium security severity: Medium)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 6 p.m.

8.3

CVSS3.1

CVE-2024-11114 -

Inappropriate implementation in Views in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 6:02 p.m.

8.8

CVSS3.1

CVE-2024-11113 -

Use after free in Accessibility in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 6:02 p.m.

7.5

CVSS3.1

CVE-2024-11112 -

Use after free in Media in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 6:02 p.m.

4.3

CVSS3.1

CVE-2024-11111 -

Inappropriate implementation in Autofill in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 6:21 p.m.

6.5

CVSS3.1

CVE-2024-11110 -

Inappropriate implementation in Extensions in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. (Chromium security severity: High)

๐Ÿ“… Published: Nov. 12, 2024, 8:09 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 6:07 p.m.

7.8

CVSS3.1

CVE-2024-49525 - Substance3D - Painter | Heap-based Buffer Overflow (CWE-122)

Substance3D - Painter versions 10.1.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

๐Ÿ“… Published: Nov. 12, 2024, 8:02 p.m. ๐Ÿ”„ Last Modified: Nov. 16, 2024, 4:55 a.m.
Total resulsts: 349182
Page 7910 of 34,919
ยซ previous page ยป next page
Filters