|
131
|
7.8
-
|
HIGH
Local
|
Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosur…
|
NVD-CWE-noinfo
|
CVE-2023-23583
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 16:46
2023-11-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
132
|
9.8
-
|
CRITICAL
Network
|
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
|
CWE-416
Use After Free
|
CVE-2023-46850
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-21 17:29
2023-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
133
|
7.5
-
|
HIGH
Network
|
Using the --fragment option in certain configuration setups OpenVPN version 2.6.0 to 2.6.6 allows an attacker to trigger a divide by zero behaviour which could cause an application crash, leading to …
|
CWE-369
Divide By Zero
|
CVE-2023-46849
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-21 17:29
2023-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
134
|
8.8
-
|
HIGH
Network
|
Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2023-5996
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:42
2023-11-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
135
|
6.1
-
|
MEDIUM
Network
|
Roundcube 1.5.x before 1.5.6 and 1.6.x before 1.6.5 allows XSS via a Content-Type or Content-Disposition header (used for attachment preview or download).
|
CWE-79
Cross-site Scripting
|
CVE-2023-47272
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:30
2023-11-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
136
|
4.3
-
|
MEDIUM
Network
|
Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted local HTML page. (Chromium security severity: L…
|
CWE-346
Origin Validation Error
|
CVE-2023-5859
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:42
2023-11-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
137
|
8.8
-
|
HIGH
Network
|
Use after free in Side Panel in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a cra…
|
CWE-416
Use After Free
|
CVE-2023-5856
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:42
2023-11-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
138
|
6.1
-
|
MEDIUM
Network
|
Inappropriate implementation in Payments in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to bypass XSS preventions via a malicious file. (Chromium security severity: High)
|
CWE-79
Cross-site Scripting
|
CVE-2023-5480
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:41
2023-11-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
139
|
4.3
-
|
MEDIUM
Network
|
Inappropriate implementation in WebApp Provider in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Low)
|
CWE-346
Origin Validation Error
|
CVE-2023-5858
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:42
2023-11-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
140
|
8.8
-
|
HIGH
Network
|
Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially execute arbitrary code via a malicious file. (Chromium security severity: M…
|
NVD-CWE-noinfo
|
CVE-2023-5857
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:42
2023-11-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|