8.8

CVSS3.1

CVE-2024-6998 -

Use after free in User Education in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 7:52 p.m.

8.8

CVSS3.1

CVE-2024-6997 -

Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 13, 2024, 4:08 p.m.

3.1

CVSS3.1

CVE-2024-6996 -

Race in Frames in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: March 13, 2025, 2:15 p.m.

8.8

CVSS3.1

CVE-2024-6995 -

Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 8:35 p.m.

8.8

CVSS3.1

CVE-2024-6994 -

Heap buffer overflow in Layout in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 10:10 p.m.

8.8

CVSS3.1

CVE-2024-6989 -

Use after free in Loader in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 10:10 p.m.

8.8

CVSS3.1

CVE-2024-6988 -

Use after free in Downloads in Google Chrome on iOS prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 8:51 p.m.

7

CVSS3.1

CVE-2024-23483 - Local Privilege Escalation via lack of input validation

An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection.Β This issue affects Zscaler Client Connector on MacOS <4.2.

πŸ“… Published: Aug. 6, 2024, 3:30 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 9:23 p.m.

6.4

CVSS3.1

CVE-2024-23460 - Incorrect signature validation of package

The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS <4.2.

πŸ“… Published: Aug. 6, 2024, 3:29 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 9:29 p.m.

6.1

CVSS3.1

CVE-2024-6720 - Light Poll <= 1.0.0 - Poll Answers Deletion via CSRF

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

πŸ“… Published: Aug. 6, 2024, 3:28 p.m. πŸ”„ Last Modified: Oct. 28, 2024, 8:35 p.m.
Total resulsts: 349182
Page 8937 of 34,919
Β« previous page Β» next page
Filters