Gh05T666Nero

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 149.0.7827.53 **Description** An out of bounds write occurs in Skia, a graphics library, which allows a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape. This is achieved through the use of a specially crafted HTML page. **Recommendations** Update to version 149.0.7827.53 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 149.0.7827.53 **Description** A heap buffer overflow in Skia allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. A heap buffer overflow occurs when a program writes more data to a buffer allocated on the heap than it can hold, potentially corrupting adjacent memory. **Recommendations** Update to version 149.0.7827.53 or later.

**Name of the Vulnerable Software and Affected Versions** Dokploy versions prior to 0.26.8 **Description** Dokploy is a self-hostable Platform as a Service (PaaS) where the schedule router fails to enforce organization or role checks. This allows any authenticated user to create, update, run, or delete schedules belonging to other organizations by providing the `scheduleId` or `serverId`. Because schedule types `server` and `dokploy-server` write and execute scripts on the host or remote servers, this can lead to Remote Code Execution (RCE), which is the ability to execute arbitrary commands on a target machine. **Recommendations** Update to a version later than 0.26.7.

**Name of the Vulnerable Software and Affected Versions** Dokploy versions prior to 0.26.6 **Description** Dokploy is a Platform as a Service (PaaS). A command injection issue exists in versions prior to 0.26.6 within the `/docker-container-terminal` WebSocket endpoint. The `containerId` and `activeWay` parameters are directly used in shell commands without proper sanitization. This allows an authenticated attacker to execute arbitrary commands on the host server. **Recommendations** Versions prior to 0.26.6 should be updated to version 0.26.6 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 145.0.7632.116 **Description** A flaw exists in Google Chrome's DevTools due to an inappropriate implementation. An attacker could potentially convince a user to install a malicious extension. This would allow the attacker to inject scripts or HTML into a privileged page through DevTools. **Recommendations** Update Google Chrome to version 145.0.7632.116 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.153 **Description** A heap buffer overflow exists in ANGLE, a low-level graphics library used by Google Chrome. This issue could allow a remote attacker to exploit heap corruption through a specially crafted HTML page. The Chromium security severity is rated as High. **Recommendations** Update Google Chrome to version 146.0.7680.153 or later.