CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в firefox, thunderbird

A out-of-bounds read can occur during the decoding of H264 videos. This can lead to a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

5.5CVSS6.4AI score0.00083EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в thunderbird

When saving or opening an email attachment on macOS, Thunderbird did not set the “com.apple.quarantine” attribute on the received file. If the received file was an application and the user attempted to open it, the application would be started immediately, without asking the user to confirm. This...

7.8CVSS6.7AI score0.00037EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 3:31 a.m.•2 views

SUSE CVE-2022-3155

When saving or opening an email attachment on macOS, Thunderbird did not set attribute com.apple.quarantine on the received file. If the received file was an application and the user attempted to open it, then the application was started immediately without asking the user to confirm. This...

7.8CVSS8.9AI score0.00037EPSS

Exploits0References4

SUSE CVE•added 2023/02/15 3:31 a.m.•1 views

SUSE CVE-2022-3266

An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

5.5CVSS8.8AI score0.00083EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:23 a.m.•1 views

SUSE CVE-2022-40960

Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5CVSS8.9AI score0.00159EPSS

Exploits0References8

OSV•added 2022/12/22 8:15 p.m.•1 views

DEBIAN-CVE-2022-40962

Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 104 and Firefox ESR 102.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these...

8.8CVSS8.5AI score0.00276EPSS

Exploits0References1

OSV•added 2022/12/22 8:15 p.m.•1 views

CVE-2022-3155

7.8CVSS6.8AI score

Exploits0References2

OSV•added 2022/12/22 8:15 p.m.•2 views

DEBIAN-CVE-2022-40956

When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.1CVSS7AI score0.00169EPSS

Exploits0References1

NVD•added 2022/12/22 8:15 p.m.•11 views

CVE-2022-3155

7.8CVSS0.00037EPSS

Exploits0References2

Prion•added 2022/12/22 8:15 p.m.•21 views

Memory corruption

Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

6.8CVSS8.9AI score0.00258EPSS

Exploits0References4Affected Software3

Cvelist•added 2022/12/22 12:0 a.m.•23 views

CVE-2022-42932

9.3AI score0.00258EPSS

Exploits0References4

RedHat Linux•added 2022/10/20 3:7 p.m.•2 views

Mozilla: Memory safety bugs fixed in Firefox ESR 102.4 and Thunderbird 102.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort som...

8.8CVSS7.5AI score0.00258EPSS

Exploits0References6

RedhatCVE•added 2022/10/19 1:17 p.m.•36 views

CVE-2022-42932

8.8CVSS2AI score0.00258EPSS

Exploits0References5

OSV•added 2022/09/28 12:0 a.m.•1 views

UBUNTU-CVE-2022-40958

By injecting a cookie with certain special characters, an attacker on a shared subdomain which is not a secure context could set and thus overwrite cookies from a secure context, leading to session fixation and other attacks. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and...

6.5CVSS6.8AI score0.00259EPSS

Exploits0References7

UbuntuCve•added 2022/09/28 12:0 a.m.•27 views

CVE-2022-40959

During iframe navigation, certain pages did not have their FeaturePolicy fully initialized leading to a bypass that leaked device permissions into untrusted subdocuments. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5CVSS6.9AI score0.00134EPSS

Exploits0References6

OSV•added 2022/09/28 12:0 a.m.•1 views

UBUNTU-CVE-2022-40960

6.5CVSS6.9AI score0.00159EPSS

Exploits0References7

RedHat Linux•added 2022/09/26 3:57 p.m.•5 views

Mozilla: Memory safety bugs fixed in Firefox 105 and Firefox ESR 102.3

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Mozilla developers Nika Layzell, Timothy Nikkel, Jeff Muizelaar, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reporting memory safety bugs present in Firefox 104 and Firefox ESR 102.2...

8.8CVSS7.4AI score0.00276EPSS

Exploits0References5

RedHat Linux•added 2022/09/26 3:41 p.m.•3 views

Mozilla: Memory safety bugs fixed in Firefox 105 and Firefox ESR 102.3

8.8CVSS7.4AI score0.00276EPSS

Exploits0References5

RedHat Linux•added 2022/09/26 3:37 p.m.•3 views

Mozilla: Memory safety bugs fixed in Firefox 105 and Firefox ESR 102.3

8.8CVSS7.4AI score0.00276EPSS

Exploits0References5

RedHat Linux•added 2022/09/26 2:59 p.m.•3 views

Mozilla: Memory safety bugs fixed in Firefox 105 and Firefox ESR 102.3