Vulnerabilities in the winget catalog.

Out of bounds read in GPU in Google Chrome on Android prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity:...

AffectsGoogle Chrome

Use after free in DevTools in Google Chrome prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

AffectsGoogle Chrome

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

AffectsMozilla Firefox (en-US)Mozilla Firefox (zh-TW)Mozilla Firefox (sco)Mozilla Firefox (si)Mozilla Firefox (zh-CN)Firefox Developer Edition (sk)Firefox Developer Edition (th)Mozilla Firefox (sl)+ 17 more

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

AffectsMozilla Firefox (en-US)Mozilla Firefox (zh-TW)Mozilla Firefox (sco)Mozilla Firefox (si)Mozilla Firefox (zh-CN)Firefox Developer Edition (sk)Firefox Developer Edition (th)Mozilla Firefox (sl)+ 17 more

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

AffectsMozilla Firefox (en-US)Mozilla Firefox (zh-TW)Mozilla Firefox (sco)Mozilla Firefox (si)Mozilla Firefox (zh-CN)Firefox Developer Edition (sk)Firefox Developer Edition (th)Mozilla Firefox (sl)+ 17 more

Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

AffectsMozilla Firefox (en-US)Mozilla Firefox (zh-TW)Mozilla Firefox (sco)Mozilla Firefox (si)Mozilla Firefox (zh-CN)Firefox Developer Edition (sk)Firefox Developer Edition (th)Mozilla Firefox (sl)+ 17 more

Heap buffer overflow in ANGLE in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

AffectsGoogle Chrome

Race in Media in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to corrupt media stream metadata via a crafted HTML page. (Chromium security severity: Low)

AffectsGoogle Chrome

Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severi...

AffectsGoogle Chrome

Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulne...

AffectsMozilla Firefox (en-US)Mozilla Firefox (zh-TW)Mozilla Firefox (sco)Mozilla Firefox (si)Mozilla Firefox (zh-CN)Firefox Developer Edition (sk)Firefox Developer Edition (th)Mozilla Firefox (sl)+ 17 more

Document structural anomalies caused inconsistencies between page element relationships and internal index states. When scripts triggered document modifications, object reference validity was not properly maintained, leading to a crash whe...

AffectsFoxit PDF Reader

Flaws in page lifecycle management allow document structure changes to desynchronize internal component states, causing subsequent operations to access invalidated objects and crash the program.

AffectsFoxit PDF Reader

Parsing logic flaws cause non-signature data to be misidentified as valid signatures when processing malformed form field hierarchies, leading to invalid memory writes and program crashes during internal data structure construction.

AffectsFoxit PDF Reader

Calling a function that triggers a UI refresh after removing comments via a script may access an invalidated object, leading to program crashes.

AffectsFoxit PDF Reader

A crafted XFA PDF can trigger a use-after-free condition during calculate event processing, causing the application to crash and resulting in an arbitrary code execution.

AffectsFoxit PDF Reader

Improper control flow management allows a crafted document action chain to cause modal dialog reentry on the main thread, resulting in UI freeze and denial of service.

AffectsFoxit PDF Reader

Insufficient parameter verification leads to the occurrence of format errors in files, which will trigger an unhandled "std::invalid_argument" exception, ultimately causing the program to terminate.

AffectsFoxit PDF Reader

Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited...

AffectsMozilla Firefox (en-US)Mozilla Firefox (zh-TW)Mozilla Firefox (sco)Mozilla Firefox (si)Mozilla Firefox (zh-CN)Firefox Developer Edition (sk)Firefox Developer Edition (th)Mozilla Firefox (sl)+ 17 more

Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could...

AffectsMozilla Firefox (en-US)Mozilla Firefox (zh-TW)Mozilla Firefox (sco)Mozilla Firefox (si)Mozilla Firefox (zh-CN)Firefox Developer Edition (sk)Firefox Developer Edition (th)Mozilla Firefox (sl)+ 17 more

Race in GPU in Google Chrome on Windows prior to 147.0.7727.117 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: Medium)

AffectsGoogle Chrome