13 matches found
Mozilla Thunderbird Information Disclosure Vulnerability (CNVD-2026-11794)
Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The program supports IMAP, POP mail protocols and HTML mail format. An information disclosure vulnerability exists in Mozilla Thunderbird, which can be...
CVE-2025-11794
creationtimestamp| type| source ---|---|--- 2025-11-14 15:02:16+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115548653846943635...
CVE-2025-11794
Mattermost versions 10.11.x = 10.11.3, 10.5.x = 10.5.11, 10.12.x = 10.12.0 fail to sanitize user data which allows system administrators to access password hashes and MFA secrets via the POST /api/v4/users/userid/email/verify/member endpoint...
MAL-2025-11794 Malicious code in @zalastax/nolb-graphqly (npm)
The package @zalastax/nolb-graphqly was found to contain malicious code...
CVE-2024-11794 Fuji Electric Monitouch V-SFT V10 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Fuji Electric Monitouch V-SFT V10 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Monitouch V-SFT. User interaction is required to exploit this vulnerability in th...
CVE-2024-11794
creationtimestamp| type| source ---|---|--- 2024-11-27 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1620/ 2024-11-27 23:57:51+00:00| seen| https://infosec.exchange/users/cve/statuses/113557626594293010 2024-12-03 11:00:00+00:00| seen|...
Alcatel OpenTouch Command Injection (CVE-2020-11794)
A command injection vulnerability exists in Alcatel OpenTouch. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary commands via shell...
CVE-2018-11794
...
CVE-2018-11794
CVE-2018-11794 is rejected/not used and does not represent an active vulnerability entry.
Memory corruption
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how affected Microsoft scripting engines handle objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability"...
CVE-2017-11794
CVE-2017-11794 spans Microsoft Edge information-disclosure vulnerabilities in Windows 10 (1703/1709) and related Edge versions. Connected sources confirm the root cause: Edge mishandles objects in memory, enabling an attacker to obtain information that could aid further system compromise. CNVD-20...
CVE-2019-11794
...
CVE-2019-11794
CVE-2019-11794 is rejected and not used per the Initial Description; this entry does not represent an active vulnerability.