Lucene search
K

94 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : firefox-68.8.0-1.0.1.el7.AXS7 (AXSA:2020-073:10)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-073:10 advisory. Mozilla: Use-after-free during worker shutdown CVE-2020-12387 Mozilla: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8 CVE-2020-12395...

10CVSS8.3AI score0.05803EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 4:24 a.m.8 views

CVE-2019-12395

In Webbukkit Dynmap 3.0-beta-3 or below, due to a missing login check in servlet/MapStorageHandler.java, an attacker can see a map image without login even if victim enables login-required in setting...

5.3CVSS6.8AI score0.01595EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/17 11:10 a.m.14 views

CVE-2024-12395 WooCommerce Additional Fees On Checkout (Free) <= 1.4.7 - Reflected Cross-Site Scripting via 'number'

The WooCommerce Additional Fees On Checkout Free plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘number’ parameter in all versions up to, and including, 1.4.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

6.1CVSS0.00463EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.22 views

Oracle Linux 6 : firefox (ELSA-2020-2036)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-2036 advisory. - Added fix for mozbz1348168/CVE-2017-5428 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

10CVSS7.7AI score0.05803EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.5 views

SUSE CVE-2018-12395

By rewriting the Host: request headers using the webRequest API, a WebExtension can bypass domain restrictions through domain fronting. This would allow access to domains that share a host that are otherwise restricted. This vulnerability affects Firefox ESR 60.3 and Firefox 63...

6.1CVSS8.3AI score0.02851EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.17 views

Slackware: Security Advisory (SSA:2020-126-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.05803EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2020-0209)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.05803EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.21 views

Mozilla Firefox Security Advisory (MFSA2018-26) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.8CVSS7.5AI score0.03924EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.28 views

Mozilla Firefox Security Advisory (MFSA2020-16) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

10CVSS7.3AI score0.05803EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2018:3656-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.03924EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2020:1209-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9AI score0.05803EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2020:14359-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.4AI score0.05803EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2020:1218-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.4AI score0.05803EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2018:3749-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.03924EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.65 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2020-0064)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has firefox packages installed that are affected by multiple vulnerabilities: - Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after- free. We are aware of targeted attacks in...

10CVSS8.4AI score0.06305EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2020/07/21 12:0 a.m.31 views

NewStart CGSL MAIN 6.01 : thunderbird Multiple Vulnerabilities (NS-SA-2020-0036)

The remote NewStart CGSL host, running version MAIN 6.01, has thunderbird packages installed that are affected by multiple vulnerabilities: - By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This...

10CVSS8.2AI score0.06305EPSS
Exploits1References11
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/10 4:6 a.m.35 views

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.8 ESR) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.1.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-6831, CVE-2020-12387, CVE-2020-12392, CVE-2020-12395 Vulnerability Details CVEID: CVE-2020-12395 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by...

10CVSS2.6AI score0.05803EPSS
Exploits0Affected Software1
Circl
Circl
added 2020/05/27 7:55 a.m.5 views

CVE-2020-12395

creationtimestamp| type| source ---|---|--- 2020-05-27 07:55:42+00:00| seen| https://t.me/cibsecurity/12307...

10CVSS8.5AI score0.02259EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/05/27 12:0 a.m.45 views

Ubuntu: Security Advisory (USN-4373-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.8AI score0.05803EPSS
Exploits0References2
CVE
CVE
added 2020/05/26 4:58 p.m.309 views

CVE-2020-12395

CVE-2020-12395 refers to memory-safety bugs reported in Mozilla Firefox and Thunderbird. Mozilla noted memory corruption in bugs affecting Firefox 75/ESR 68.7 and stated that with enough effort some bugs could be exploited to run arbitrary code. The vulnerability impacts Firefox ESR &lt; 68.8, Fi...

10CVSS9.8AI score0.02259EPSS
Exploits0References7Affected Software3
Rows per page
Query Builder