Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

75 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : thunderbird-102.7.1-1.el9.ML.1 (AXSA:2023-5071:08)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5071:08 advisory. Mozilla: libusrsctp library out of date CVE-2022-46871 Mozilla: Arbitrary file read from GTK drag and drop on Linux CVE-2023-23598 Mozilla: Memory...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : thunderbird-102.7.1-1.el8.ML.1 (AXSA:2023-4905:03)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-4905:03 advisory. Mozilla: libusrsctp library out of date CVE-2022-46871 Mozilla: Arbitrary file read from GTK drag and drop on Linux CVE-2023-23598 Mozilla: Memory...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.2 views

MiracleLinux 9 : firefox-102.7.0-1.el9.ML.1 (AXSA:2023-5064:08)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5064:08 advisory. Mozilla: libusrsctp library out of date CVE-2022-46871 Mozilla: Arbitrary file read from GTK drag and drop on Linux CVE-2023-23598 Mozilla: Memory...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: firefox (TSSA-2023:0188)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0188 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS8.3AI score0.00786EPSS
Exploits1References9
Tenable Nessus
Tenable Nessusadded 2024/02/08 12:0 a.m.20 views

CentOS 8 : firefox (CESA-2023:0288)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2023:0288 advisory. - Mozilla: libusrsctp library out of date CVE-2022-46871 - Mozilla: Fullscreen notification bypass CVE-2022-46877 - Mozilla: Arbitrary file read from G...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2024/02/08 12:0 a.m.25 views

CentOS 8 : thunderbird (CESA-2023:0463)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2023:0463 advisory. - Mozilla: libusrsctp library out of date CVE-2022-46871 - Mozilla: Fullscreen notification bypass CVE-2022-46877 - Mozilla: Arbitrary file read from G...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2023/11/07 12:0 a.m.29 views

Rocky Linux 9 : thunderbird (RLSA-2023:0476)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:0476 advisory. - An out of date library libusrsctp contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References17
Tenable Nessus
Tenable Nessusadded 2023/11/07 12:0 a.m.20 views

Rocky Linux 8 : firefox (RLSA-2023:0288)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:0288 advisory. - An out of date library libusrsctp contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References17
Tenable Nessus
Tenable Nessusadded 2023/11/06 12:0 a.m.27 views

Rocky Linux 8 : thunderbird (RLSA-2023:0463)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:0463 advisory. - An out of date library libusrsctp contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References17
NVD
NVDadded 2023/06/02 5:15 p.m.13 views

CVE-2023-23601

Navigations were being allowed when dragging a URL from a cross-origin iframe into the same tab which could lead to website spoofing attacks This vulnerability affects Firefox 109, Firefox ESR 102.7, and Thunderbird 102.7...

6.5CVSS6.6AI score0.00115EPSS
Exploits0References4
CVE
CVEadded 2023/06/02 12:0 a.m.306 views

CVE-2023-23601

CVE-2023-23601 is a browser navigation/vulnerability caused by dragging a URL from a cross-origin iframe into the same tab, enabling potential spoofing. Public records confirm impact on Firefox (less than 109) and Firefox ESR (less than 102.7) and Thunderbird (less than 102.7). Multiple advisorie...

6.5CVSS6.6AI score0.00115EPSS
Exploits0References4Affected Software3
Vulnrichment
Vulnrichmentadded 2023/06/02 12:0 a.m.6 views

CVE-2023-23601 URL being dragged from cross-origin iframe into same tab triggers navigation

Navigations were being allowed when dragging a URL from a cross-origin iframe into the same tab which could lead to website spoofing attacks This vulnerability affects Firefox 109, Firefox ESR 102.7, and Thunderbird 102.7...

7.7AI score0.00115EPSS
Exploits0References4
OpenVAS
OpenVASadded 2023/03/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2023-0034)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.00786EPSS
Exploits0References9
IBM Security Bulletins
IBM Security Bulletinsadded 2023/03/21 11:20 a.m.69 views

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox ESR have affected APM Synthetic Playback Agent

Summary APM Synthetic Playback Agent is vulnerable to Firefox ESR CVE-2023-23599, CVE-2023-23603, CVE-2023-23605, CVE-2023-23602, CVE-2023-23601, CVE-2023-23598. Firefox ESR is used by APM Synthetic Playback Agent for running the selenium scripts. The fix includes support for Firefox 102.7 ESR...

8.8CVSS9.1AI score0.00223EPSS
Exploits0Affected Software1
OpenVAS
OpenVASadded 2023/02/21 12:0 a.m.16 views

Debian: Security Advisory (DLA-3324-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.00786EPSS
Exploits0References4
ALT Linux
ALT Linuxadded 2023/02/21 12:0 a.m.33 views

Security fix for the ALT Linux 10 package firefox-esr version 102.7.0-alt1

102.7.0-alt1 built Feb. 21, 2023 Pavel Vasenkov in task 315243 Jan. 18, 2023 Pavel Vasenkov - New ESR version. - Security fixes + CVE-2022-46871 libusrsctp library out of date + CVE-2023-23598 Arbitrary file read from GTK drag and drop on Linux + CVE-2023-23599 Malicious command could be hidden i...

8AI score0.00786EPSS
Exploits0
Debian
Debianadded 2023/02/20 8:15 a.m.44 views

[SECURITY] [DLA 3324-1] thunderbird security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3324-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort February 20, 2023 https://wiki.debian.org/LTS -...

8.8CVSS8.9AI score0.00786EPSS
Exploits0
OpenVAS
OpenVASadded 2023/02/19 12:0 a.m.13 views

Debian: Security Advisory (DSA-5355-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.00786EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/02/19 12:0 a.m.38 views

Debian DSA-5355-1 : thunderbird - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5355 advisory. Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the stable distribution...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References43
Tenable Nessus
Tenable Nessusadded 2023/02/14 12:0 a.m.31 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2023:0329-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0329-1 advisory. - An out of date library libusrsctp contained vulnerabilities that could potentially be exploite...

8.8CVSS8.3AI score0.00786EPSS
Exploits0References20
Rows per page
Query Builder