05138803331

Faculty of Engineering, Ferdowsi University of Mashhad, Mashhad, Khorasan Razavi, Iran

0

basket

  • فارسی
    • 0

    سبد خرید

    Last Articles

    article
    High level vulnerability in cisco
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability inMicrosoft Outlook
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability in WordPress plugin
    اسفند ۲۱ , ۱۴۰۱
    Read more

    Categories

    high level vulnerability in chrome

    high level vulnerability in chrome

    CVE-2023-0138

    Description

    Heap buffer overflow in libphonenumber in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

    _____________________________

    CVE-2023-0136

    Description

    Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to execute incorrect security UI via a crafted HTML page. (Chromium security severity: Medium)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

     

    _______________________________________

    CVE-2023-0137

    Description

    Heap buffer overflow in Platform Apps in Google Chrome on Chrome OS prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

     

    Security News
    high level vulnerability in microsoft

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Related Articles

    article
    CRITICAL level vulnerability in IBM

    CVE-2022-47986 Description IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on the system, caused by a YAML deserialization flaw. By sending a specially crafted obsolete API call, an attacker could exploit this vulnerability to execute arbitrary code on the system. The obsolete API call was […]

    Category:
    بهمن ۳۰ , ۱۴۰۱
    Read more
    article
    high level vulnerability in Adobe

    CVE-2023-21597 Description Adobe InCopy versions 18.0 (and earlier), 17.4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Base Score: 7.8 HIGH https://helpx.adobe.com/security/products/incopy/apsb23-08.html ____________________________________ CVE-2023-21596 Description […]

    Category:
    دی ۲۶ , ۱۴۰۱
    Read more
    article
    high level vulnerability in dlink

    CVE-2019-17621 Description The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network. Base Score: 9.8 CRITICAL https://www.dlink.com/en/security-bulletin

    Category:
    بهمن ۱ , ۱۴۰۱
    Read more

    Contact us

    Address: Mashhad, Ferdowsi University of Mashhad, Faculty of Engineering, APA Specialized Center
    Phone number: 05138803331
    Working hours: 8 am to 4 pm
    cert@um.ac.ir

    Links

    © All rights reserved to APA Specialized Center of Ferdowsi University of Mashhad