Race condition in Blink Professional 4.6.1 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler...
6.9AI Score
0.0004EPSS
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when the device retrieves updates scripts from the...
9.8CVSS
9.7AI Score
0.011EPSS
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the key...
8.8CVSS
9AI Score
0.002EPSS
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when retrieving internal network configuration...
9.8CVSS
9.7AI Score
0.011EPSS
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary code and commands on the device due to insufficient UART...
6.8CVSS
7.2AI Score
0.003EPSS
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the ssid...
8.8CVSS
9AI Score
0.002EPSS
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the encryption...
8.8CVSS
9AI Score
0.002EPSS
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the bssid...
8.8CVSS
9AI Score
0.002EPSS
WebKit in Google Chrome before Blink M11 and M12 does not properly handle counter nodes, which allows remote attackers to cause a denial of service (memory...
6.5CVSS
6.2AI Score
0.001EPSS
An issue exists in third_party/WebKit/Source/WebCore/svg/animation/SVGSMILElement.h in WebKit in Google Chrome before Blink M11 and M12 when trying to access a removed smil...
6.5CVSS
6.2AI Score
0.001EPSS
Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with...
6.5CVSS
6.6AI Score
0.001EPSS
A double-free vulnerability exists in WebKit in Google Chrome before Blink M12 in the WebCore::CSSSelector...
7.5CVSS
7.3AI Score
0.001EPSS
An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControllerPrivate that signal when a hardware animation...
6.5CVSS
6.2AI Score
0.002EPSS
A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit...
9.8CVSS
9.1AI Score
0.002EPSS
Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument...
6.5CVSS
6.6AI Score
0.002EPSS
Incorrect handling of timer information in Timer.cpp in WebKit in Google Chrome before Blink...
6.5CVSS
6.2AI Score
0.001EPSS
A stale layout root is set as an input element in WebKit in Google Chrome before Blink M13 when a child of a keygen with autofocus is...
6.5CVSS
6.3AI Score
0.003EPSS
An Integer Overflow exists in WebKit in Google Chrome before Blink M11 in the macOS WebCore::GraphicsContext::fillRect...
7.5CVSS
7.2AI Score
0.001EPSS
The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service (crash) via the htmlpluginelement.cpp...
6.5CVSS
6.1AI Score
0.001EPSS
WebKit in Google Chrome before Blink M11 contains a bad cast to RenderBlock when anonymous blocks are...
9.8CVSS
9.1AI Score
0.003EPSS
The Chemssou Blink (aka com.chemssou.blink) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted...
6AI Score
0.0005EPSS