Google Security Research

1,215 exploits Active since May 2013
EIP-2026-103730 EXPLOITDB text WORKING POC
Wireshark - 'nettrace_3gpp_32_423_file_open' Stack Out-of-Bounds Read
EIP-2026-103729 EXPLOITDB text WORKING POC
Wireshark - 'iseries_check_file_type' Stack Out-of-Bounds Read
CVE-2015-8733 EXPLOITDB MEDIUM text WORKING POC
Wireshark 1.12.x < 1.12.9 and 2.0.x < 2.0.1 - Denial of Service in Sniffer File Parser
The ngsniffer_process_record function in wiretap/ngsniffer.c in the Sniffer file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationships between record lengths and record header lengths, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.
CVSS 5.5
EIP-2026-103728 EXPLOITDB text WORKING POC
Wireshark - 'get_t61_string' Heap Out-of-Bounds Read
EIP-2026-103727 EXPLOITDB text WORKING POC
Wireshark - 'get_t61_string' Heap Out-of-Bounds Read
CVE-2018-19627 EXPLOITDB HIGH text WORKING POC
Wireshark <2.6.5-2.4.11 - Buffer Overflow
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
CVSS 7.5
EIP-2026-103726 EXPLOITDB text WORKING POC
Wireshark - 'cdma2k_message_ACTIVE_SET_RECORD_FIELDS' Stack Corruption
EIP-2026-103725 EXPLOITDB text WORKING POC
Wireshark - 'AirPDcapDecryptWPABroadcastKey' Heap Out-of-Bounds Read (2)
CVE-2015-8724 EXPLOITDB MEDIUM text WORKING POC
Wireshark 1.12.x < 1.12.9 and 2.0.x < 2.0.1 - Denial of Service via AirPDcapDecryptWPABroadcastKey Function
The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not verify the WPA broadcast key length, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.
CVSS 5.5
CVE-2018-16071 EXPLOITDB HIGH text WRITEUP
Google Chrome < 69.0.3497.81 - Use-After-Free in WebRTC via Crafted Video File
A use after free in WebRTC in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
CVSS 8.8
CVE-2018-6129 EXPLOITDB MEDIUM text WORKING POC
Google Chrome <67.0.3396.62 - Memory Corruption
Out of bounds array access in WebRTC in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
CVSS 6.5
CVE-2018-6130 EXPLOITDB MEDIUM text WORKING POC
Google Chrome <67.0.3396.62 - Memory Corruption
Incorrect handling of object lifetimes in WebRTC in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
CVSS 6.5
EIP-2026-103718 EXPLOITDB text WORKING POC
WebRTC - VP8 Block Decoding Use-After-Free
EIP-2026-103717 EXPLOITDB text WORKING POC
WebRTC - H264 NAL Packet Processing Type Confusion
EIP-2026-103716 EXPLOITDB text WRITEUP
WebRTC - FEC Processing Overflow
CVE-2018-16083 EXPLOITDB HIGH text WRITEUP
Google Chrome < 69.0.3497.81 - Out-of-bounds Read in WebRTC Forward Error Correction
An out of bounds read in forward error correction code in WebRTC in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
CVSS 8.8
EIP-2026-103715 EXPLOITDB html WORKING POC
WebKitGTK+ - 'ThreadedCompositor' Race Condition
CVE-2019-8689 EXPLOITDB HIGH text WORKING POC
iCloud < 7.13 - Memory Corruption via Malicious Web Content
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
CVSS 8.8
CVE-2018-4442 EXPLOITDB HIGH javascript WORKING POC
Safari < 12.0.2 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.
CVSS 8.8
CVE-2018-4416 EXPLOITDB HIGH javascript WORKING POC
Safari < 12.0.1 - Memory Corruption
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.
CVSS 8.8
CVE-2019-6215 EXPLOITDB HIGH javascript WORKING POC
Safari < 12.0.3 - Remote Code Execution via Type Confusion
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.
CVSS 8.8
CVE-2017-7005 EXPLOITDB HIGH html WORKING POC
Apple <10.3.2, <10.1.1, <10.2.1 - RCE
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "JavaScriptCore" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
CVSS 8.8
CVE-2017-2547 EXPLOITDB HIGH html WORKING POC
Safari < 10.1.1 - Remote Code Execution via WebKit Memory Corruption
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
CVSS 8.8
CVE-2017-2531 EXPLOITDB HIGH javascript WORKING POC
Safari < 10.1.1 - Remote Code Execution via WebKit Memory Corruption
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
CVSS 8.8
CVE-2018-4386 EXPLOITDB HIGH javascript WORKING POC
Safari < 12.0.1 - Memory Corruption
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.
CVSS 8.8