Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-4369
Insufficient data validation in Systems Extensions in Google Chrome on ChromeOS before 116.0.5845.120 allowed an attacker who convinced a user to install a malicious extension to bypass file restrictions via a crafted HTML page. (Chromium security severity: Medium)
Google Chrome
NA
CVE-2024-1280
Stable Channel Update for ChromeOS / ChromeOS Flex
NA
CVE-2024-1281
Stable Channel Update for ChromeOS / ChromeOS Flex
NA
CVE-2023-2457
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS before 113.0.5672.114 allowed a remote malicious user to potentially exploit heap corruption via crafted audio file. (Chromium security severity: High)
Google Chrome
NA
CVE-2023-21143
In multiple functions of multiple files, there is a possible way to make the device unusable due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andro...
Google Android 11.0
Google Android 12.0
Google Android 12.1
Google Android 13.0
NA
CVE-2023-21264
In multiple functions of mem_protect.c, there is a possible way to access hypervisor memory due to a memory access check in the wrong place. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
Google Android -
NA
CVE-2023-35685
Stable Channel Update for ChromeOS/ChromeOS Flex
NA
CVE-2023-40109
In createFromParcel of UsbConfiguration.java, there is a possible background activity launch (BAL) due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
NA
CVE-2023-40110
In multiple functions of MtpPacket.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
NA
CVE-2023-40112
In ippSetValueTag of ipp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of past print jobs or other print-related information, with no additional execution privileges needed. User interaction is not needed ...
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »