05138803331

Faculty of Engineering, Ferdowsi University of Mashhad, Mashhad, Khorasan Razavi, Iran

0

basket

  • فارسی
    • 0

    سبد خرید

    Last Articles

    article
    High level vulnerability in cisco
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability inMicrosoft Outlook
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability in WordPress plugin
    اسفند ۲۱ , ۱۴۰۱
    Read more

    Categories

    high level vulnerability in chrome

    high level vulnerability in chrome

    CVE-2023-0138

    Description

    Heap buffer overflow in libphonenumber in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

    _____________________________

    CVE-2023-0136

    Description

    Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to execute incorrect security UI via a crafted HTML page. (Chromium security severity: Medium)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

     

    _______________________________________

    CVE-2023-0137

    Description

    Heap buffer overflow in Platform Apps in Google Chrome on Chrome OS prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

     

    Security News
    high level vulnerability in microsoft

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Related Articles

    article
    high level vulnerability in WordPress plugin

    CVE-2021-24581 Description The Blue Admin WordPress plugin through 21.06.01 does not sanitise or escape its “Logo Title” setting before outputting in a page, leading to a Stored Cross-Site Scripting issue. Furthermore, the plugin does not have CSRF check in place when saving its settings, allowing the issue to be exploited via a CSRF attack. Base […]

    Category:
    بهمن ۲۴ , ۱۴۰۱
    Read more
    article
    critical level & high level vulnerability in Cisco

    CVE-2023-20025 Description A vulnerability in the web-based management interface of Cisco Small Business RV042 Series Routers could allow an unauthenticated, remote attacker to bypass authentication on the affected device. This vulnerability is due to incorrect user input validation of incoming HTTP packets. An attacker could exploit this vulnerability by sending crafted requests to the web-based […]

    Category:
    بهمن ۱۲ , ۱۴۰۱
    Read more
    article
    high level vulnerability in Intel Corporation

    CVE-2022-25992 Description Insecure inherited permissions in the Intel(R) oneAPI Toolkits oneapi-cli before version 0.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access. Base Score: 7.5 HIGH http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00674.html ____________________ CVE-2022-26343 Description Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation […]

    Category:
    بهمن ۳۰ , ۱۴۰۱
    Read more

    Contact us

    Address: Mashhad, Ferdowsi University of Mashhad, Faculty of Engineering, APA Specialized Center
    Phone number: 05138803331
    Working hours: 8 am to 4 pm
    [email protected]

    Links

    © All rights reserved to APA Specialized Center of Ferdowsi University of Mashhad