Version 3.0.7 of the Securly Chrome Extension uses deprecated SHA-1 hashing for IWF CSAM URL matching (25,020 hashes) and CIPA blocklist matching (12,352 hashes).
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NSecurly
APPSecurly3.0.7
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje
Powiązane podatności
CVE-2026-8874HIGH7.1ten sam produkt
Version 3.0.7 of the Securly Chrome Extension downloads JSON files containing crisis alert keywords and filter...
CVE-2026-8876HIGH7.3ten sam produkt
Version 3.0.7 of the Securly Chrome Extension contains hardcoded, plaintext AES passphrases in securly.min.js....
CVE-2026-8878HIGH7.5ten sam produkt
Version 3.0.7 of the Securly Chrome Extension exposes multiple publicly accessible endpoints that allow unauth...
CVE-2026-8879HIGH7.5ten sam produkt
Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via c...
CVE-2026-8881HIGH7.5ten sam produkt
Version 3.0.7 of the Securly Chrome Extension uses EVP_BytesToKey key derivation with MD5 and a single iterati...