05138803331

Faculty of Engineering, Ferdowsi University of Mashhad, Mashhad, Khorasan Razavi, Iran

0

basket

  • فارسی
    • 0

    سبد خرید

    Last Articles

    article
    High level vulnerability in cisco
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability inMicrosoft Outlook
    فروردین ۷ , ۱۴۰۲
    Read more
    article
    CRITICAL level vulnerability in WordPress plugin
    اسفند ۲۱ , ۱۴۰۱
    Read more

    Categories

    high level vulnerability in chrome

    high level vulnerability in chrome

    CVE-2023-0138

    Description

    Heap buffer overflow in libphonenumber in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

    _____________________________

    CVE-2023-0136

    Description

    Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to execute incorrect security UI via a crafted HTML page. (Chromium security severity: Medium)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

     

    _______________________________________

    CVE-2023-0137

    Description

    Heap buffer overflow in Platform Apps in Google Chrome on Chrome OS prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

    Base Score: 8.8 HIGH

    https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

     

    Security News
    high level vulnerability in microsoft

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Related Articles

    article
    critical level & high level vulnerability in Cisco

    CVE-2023-20025 Description A vulnerability in the web-based management interface of Cisco Small Business RV042 Series Routers could allow an unauthenticated, remote attacker to bypass authentication on the affected device. This vulnerability is due to incorrect user input validation of incoming HTTP packets. An attacker could exploit this vulnerability by sending crafted requests to the web-based […]

    Category:
    بهمن ۱۲ , ۱۴۰۱
    Read more
    article
    high level and critical vulnerability(13-15 December)

    CVE-2022-2536 Description The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting changes by unauthenticated users in versions up to, and including, 1.0.8.1. This is due to insufficient validation of settings on the ‘tp_translation’ AJAX action which makes it possible for unauthenticated attackers to bypass any restrictions and influence the data shown on […]

    Category:
    آذر ۳۰ , ۱۴۰۱
    Read more
    article
    high level vulnerability in Intel Corporation

    CVE-2022-25992 Description Insecure inherited permissions in the Intel(R) oneAPI Toolkits oneapi-cli before version 0.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access. Base Score: 7.5 HIGH http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00674.html ____________________ CVE-2022-26343 Description Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation […]

    Category:
    بهمن ۳۰ , ۱۴۰۱
    Read more

    Contact us

    Address: Mashhad, Ferdowsi University of Mashhad, Faculty of Engineering, APA Specialized Center
    Phone number: 05138803331
    Working hours: 8 am to 4 pm
    cert@um.ac.ir

    Links

    © All rights reserved to APA Specialized Center of Ferdowsi University of Mashhad