Emily-al00a, Emily-tl00b, Emily-l09c, Emily-l29c Security Vulnerabilities
China Has a Controversial Plan for Brain-Computer Interfaces
China's brain-computer interface technology is catching up to the US. But it envisions a very different use case: cognitive...
7.2AI Score
Belarusian National Linked to BTC-e Faces 25 Years for $4 Billion Crypto Money Laundering
A 42-year-old Belarusian and Cypriot national with alleged connections to the now-defunct cryptocurrency exchange BTC-e is facing charges related to money laundering and operating an unlicensed money services business. Aliaksandr Klimenka, who was arrested in Latvia on December 21, 2023, was...
7.1AI Score
Arrests in $400M SIM-Swap Tied to Heist at FTX?
Three Americans were charged this week with stealing more than $400 million in a November 2022 SIM-swapping attack. The U.S. government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX, which had just...
7.5AI Score
7.1AI Score
Amazon Linux 2 : firefox (ALASFIREFOX-2023-005)
The version of firefox installed on the remote host is prior to 102.11.0-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-005 advisory. There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() ...
8.8CVSS
8.2AI Score
0.002EPSS
emily-rk.com Cross Site Scripting vulnerability OBB-3695626
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.1AI Score
Identity Theft from 1965 Uncovered through Face Recognition
Interesting story: Napoleon Gonzalez, of Etna, assumed the identity of his brother in 1965, a quarter century after his sibling's death as an infant, and used the stolen identity to obtain Social Security benefits under both identities, multiple passports and state identification cards, law...
6.9AI Score
AI as Sensemaking for Public Comments
It's become fashionable to think of artificial intelligence as an inherently dehumanizing technology, a ruthless force of automation that has unleashed legions of virtual skilled laborers in faceless form. But what if AI turns out to be the one tool able to identify what makes your ideas special,.....
6.8AI Score
Script Security: Achieving PCI DSS v4 Compliance Before the Deadline
The new Akamai Page Integrity Manager capabilities are purpose-built to address the latest PCI DSS v4.0 script requirements with one comprehensive...
7.1AI Score
Oracle Linux 8 : firefox (ELSA-2023-3220)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-3220 advisory. A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. This vulnerability...
8.8CVSS
8.7AI Score
0.002EPSS
Amazon Linux 2 : thunderbird (ALAS-2023-2051)
The version of thunderbird installed on the remote host is prior to 102.11.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2051 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have...
8.8AI Score
0.002EPSS
Ubuntu 22.04 LTS / 23.04 : SpiderMonkey vulnerabilities (USN-6120-1)
The remote Ubuntu 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6120-1 advisory. Cross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment...
9.8AI Score
0.002EPSS
Oracle Linux 8 : thunderbird (ELSA-2023-3221)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-3221 advisory. A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. (CVE-2023-32207) ...
9AI Score
0.002EPSS
AlmaLinux 8 : firefox (ALSA-2023:3220)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:3220 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and...
9AI Score
0.002EPSS
AlmaLinux 8 : thunderbird (ALSA-2023:3221)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:3221 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and...
9AI Score
0.002EPSS
Oracle Linux 9 : firefox (ELSA-2023-3143)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-3143 advisory. A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. (CVE-2023-32207) ...
9AI Score
0.002EPSS
AlmaLinux 9 : thunderbird (ALSA-2023:3150)
The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:3150 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and...
9AI Score
0.002EPSS
Rocky Linux 8 : firefox (RLSA-2023:3220)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:3220 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and...
9AI Score
0.002EPSS
AlmaLinux 9 : firefox (ALSA-2023:3143)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:3143 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and...
9AI Score
0.002EPSS
Rocky Linux 8 : thunderbird (RLSA-2023:3221)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:3221 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and...
9AI Score
0.002EPSS
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2023:2211-1)
The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2211-1 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content....
8.8AI Score
0.002EPSS
Oracle Linux 7 : thunderbird (ELSA-2023-3151)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-3151 advisory. A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. (CVE-2023-32207) ...
9AI Score
0.002EPSS
Oracle Linux 9 : thunderbird (ELSA-2023-3150)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-3150 advisory. When reading a file, an uninitialized value could have been used as read limit. (CVE-2023-32213) Mozilla developers and community members Gabriele...
9AI Score
0.002EPSS
Oracle Linux 7 : firefox (ELSA-2023-3137)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-3137 advisory. A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. (CVE-2023-32207) ...
9AI Score
0.002EPSS
8.8CVSS
8.9AI Score
0.002EPSS
Updated firefox/nss/rootcerts packages fix security vulnerability
In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks (CVE-2023-32205). An out-of-bounds read could have led to a crash in the RLBox Expat driver (CVE-2023-32206). A missing delay in popup...
8.8CVSS
8.3AI Score
0.002EPSS
Debian DLA-3421-1 : thunderbird - LTS security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3421 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing...
9AI Score
0.002EPSS
Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-6074-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6074-1 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user...
9.2AI Score
0.003EPSS
Debian DSA-5403-1 : thunderbird - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5403 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing...
9AI Score
0.002EPSS
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.04 : Thunderbird vulnerabilities (USN-6075-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 22.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6075-1 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to...
9.1AI Score
0.002EPSS
SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2023:2175-1)
The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2175-1 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential...
8.8AI Score
0.002EPSS
SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2023:2176-1)
The remote SUSE Linux SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2176-1 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential...
8.8AI Score
0.002EPSS
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaFirefox (SUSE-SU-2023:2173-1)
The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2173-1 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content....
8.8AI Score
0.002EPSS
Debian DLA-3417-1 : firefox-esr - LTS security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3417 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing...
8.9AI Score
0.002EPSS
Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2023-130-01)
The version of mozilla-thunderbird installed on the remote host is prior to 102.11.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-130-01 advisory. An out-of-bound read could have led to a crash in the RLBox Expat driver. (CVE-2023-32206) A missing...
8.9AI Score
0.002EPSS
Debian DSA-5400-1 : firefox-esr - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5400 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing...
8.9AI Score
0.002EPSS
Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2023-129-01)
The version of mozilla-firefox installed on the remote host is prior to 102.11.0esr / 113.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-129-01 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These...
9.1AI Score
0.002EPSS
Mozilla Firefox Security Advisory (MFSA2023-16) - Linux
This host is missing a security update for Mozilla...
9.8CVSS
8.9AI Score
0.003EPSS
The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 102.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-18 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These...
9AI Score
0.002EPSS
Security Vulnerabilities fixed in Thunderbird 102.11 — Mozilla
In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks. An out-of-bound read could have led to a crash in the RLBox Expat driver. A missing delay in popup notifications could have made it...
8.8CVSS
7.8AI Score
0.002EPSS
The version of Thunderbird installed on the remote Windows host is prior to 102.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-18 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have...
8.9AI Score
0.002EPSS
Security Vulnerabilities fixed in Firefox ESR 102.11 — Mozilla
In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks. An out-of-bound read could have led to a crash in the RLBox Expat driver. A missing delay in popup notifications could have made it...
8.8CVSS
7.4AI Score
0.002EPSS
The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 102.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-17 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These...
9.2AI Score
0.002EPSS
Security Vulnerabilities fixed in Firefox 113 — Mozilla
In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks. An out-of-bound read could have led to a crash in the RLBox Expat driver. A missing delay in popup notifications could have made it...
9.8CVSS
7.5AI Score
0.003EPSS
The version of Firefox installed on the remote Windows host is prior to 113.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-16 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to...
9.2AI Score
0.003EPSS
The version of Firefox installed on the remote macOS or Mac OS X host is prior to 113.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-16 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could ...
9.2AI Score
0.003EPSS
The version of Firefox ESR installed on the remote Windows host is prior to 102.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-17 advisory. In multiple cases browser prompts could have been obscured by popups controlled by content. These could have...
9.1AI Score
0.002EPSS
Typhon Reborn V2: Updated stealer features enhanced anti-analysis and evasion capabilities
The developer of the Typhon Reborn information stealer released version 2 (V2) in January, which included significant updates to its codebase and improved capabilities. Most notably, the new version features additional anti-analysis and anti-virtual machine (VM) capabilities to evade detection and....
6.5AI Score
ESXiArgs Ransomware Hits Over 500 New Targets in European Countries
More than 500 hosts have been newly compromised en masse by the ESXiArgs ransomware strain, most of which are located in France, Germany, the Netherlands, the U.K., and Ukraine. The findings come from attack surface management firm Censys, which discovered "two hosts with strikingly similar ransom....
1.5AI Score
Audience Hijacking ? A Retailer?s Grinch This Holiday Season
Understand the significant threat that audience hijacking poses to customer online buying journeys and retailers? revenue this holiday...
2.7AI Score