Oxide Project Oxide 1.4.0

CPE Details

Oxide Project Oxide 1.4.0
oxide_project
oxide
1.4.0
2019-12-11
19h43 +00:00
2019-12-11
19h43 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:oxide_project:oxide:1.4.0:*:*:*:*:*:*:*

Informations

Vendor

oxide_project

Product

oxide

Version

1.4.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2016-1586 2019-04-22 15h35 +00:00 A malicious webview could install long-lived unload handlers that re-use an incognito BrowserContext that is queued for destruction in versions of Oxide before 1.18.3.
7.5
High
CVE-2015-1332 2017-07-25 16h00 +00:00 The oxide::JavaScriptDialogManager function in oxide-qt before 1.9.1 as packaged in Ubuntu 15.04 and Ubuntu 14.04 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted website.
8.8
High
CVE-2015-1321 2015-04-29 18h00 +00:00 Use-after-free vulnerability in the file picker implementation in Oxide before 1.6.5 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted webpage.
6.8
CVE-2015-1317 2015-04-08 16h00 +00:00 Use-after-free vulnerability in Oxide before 1.5.6 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code by deleting all WebContents while a RenderProcessHost instance still exists.
7.5