CVE-2025-27680

CVE-2025-27680

Título es
CVE-2025-27680

Mié, 05/03/2025 – 06:15

Gravedad 2.0 Txt
Pendiente de análisis

Título en

CVE-2025-27680

Descripción en
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.750 Application 20.0.1442 allows Insecure Firmware Image with Insufficient Verification of Data Authenticity V-2024-004.

05/03/2025

05/03/2025

Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
Pendiente de análisis

Referencias


  • https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm

    • Enviar en el boletín
    Off

    CVE-2025-1393

    CVE-2025-1393

    Título es
    CVE-2025-1393

    Mié, 05/03/2025 – 08:15

    Tipo
    CWE-798

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1393

    Descripción en
    An unauthenticated remote attacker can use hard-coded credentials to gain full administration privileges on the affected product.

    05/03/2025

    05/03/2025

    Vector CVSS:3.1
    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

    Gravedad 3.1 (CVSS 3.1 Base Score)
    9.80

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    CRITICAL

    Referencias


  • https://certvde.com/en/advisories/VDE-2025-021

    • Enviar en el boletín
    Off

    CVE-2025-1914

    CVE-2025-1914

    Título es
    CVE-2025-1914

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-125

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1914

    Descripción en
    Out of bounds read in V8 in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/397731718

    • Enviar en el boletín
    Off

    CVE-2025-1922

    CVE-2025-1922

    Título es
    CVE-2025-1922

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-451

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1922

    Descripción en
    Inappropriate implementation in Selection in Google Chrome on Android prior to 134.0.6998.35 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/384033062

    • Enviar en el boletín
    Off

    CVE-2025-1921

    CVE-2025-1921

    Título es
    CVE-2025-1921

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-1230

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1921

    Descripción en
    Inappropriate implementation in Media Stream in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to obtain information about a peripheral via a crafted HTML page. (Chromium security severity: Medium)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/387583503

    • Enviar en el boletín
    Off

    CVE-2025-1919

    CVE-2025-1919

    Título es
    CVE-2025-1919

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-125

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1919

    Descripción en
    Out of bounds read in Media in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/392375312

    • Enviar en el boletín
    Off

    CVE-2025-1918

    CVE-2025-1918

    Título es
    CVE-2025-1918

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-125

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1918

    Descripción en
    Out of bounds read in PDFium in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to potentially perform out of bounds memory access via a crafted PDF file. (Chromium security severity: Medium)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/388557904

    • Enviar en el boletín
    Off

    CVE-2025-1917

    CVE-2025-1917

    Título es
    CVE-2025-1917

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-1021

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1917

    Descripción en
    Inappropriate implementation in Browser UI in Google Chrome on Android prior to 134.0.6998.35 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/329476341

    • Enviar en el boletín
    Off

    CVE-2025-1916

    CVE-2025-1916

    Título es
    CVE-2025-1916

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-416

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1916

    Descripción en
    Use after free in Profiles in Google Chrome prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/376493203

    • Enviar en el boletín
    Off

    CVE-2025-1923

    CVE-2025-1923

    Título es
    CVE-2025-1923

    Mié, 05/03/2025 – 04:15

    Tipo
    CWE-1021

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2025-1923

    Descripción en
    Inappropriate implementation in Permission Prompts in Google Chrome prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Low)

    05/03/2025

    05/03/2025

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias


  • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html

  • https://issues.chromium.org/issues/382540635

    • Enviar en el boletín
    Off