Lucene search
+L

165 matches found

osv
osv
added 2024/05/16 12:0 a.m.30 views

ALSA-2024:2888 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.11.0. Security Fixes: firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsing mode CVE-2024-4767 firefox: Potential...

8.8CVSS8.5AI score0.72648EPSS
Exploits18References14
nessus
nessus
added 2024/05/16 12:0 a.m.29 views

RHEL 8 : firefox (RHSA-2024:2885)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2885 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS8.1AI score0.72648EPSS
Exploits18References14
nessus
nessus
added 2024/05/16 12:0 a.m.29 views

Debian dla-3815 : firefox-esr - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3815 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3815-1 [email protected]...

8.8CVSS8AI score0.72648EPSS
Exploits18References14
nessus
nessus
added 2024/05/16 12:0 a.m.26 views

RHEL 8 : firefox (RHSA-2024:2882)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2882 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS8.1AI score0.72648EPSS
Exploits18References14
osv
osv
added 2024/05/16 12:0 a.m.28 views

ALSA-2024:2883 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.11.0 ESR. Security Fixes: firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsi...

8.8CVSS8.6AI score0.72648EPSS
Exploits18References14
debian
debian
added 2024/05/15 5:47 p.m.28 views

[SECURITY] [DSA 5691-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5691-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 15, 2024 https://www.debian.org/security/faq -...

8.8CVSS8.5AI score0.72648EPSS
Exploits18
kaspersky
kaspersky
added 2024/05/15 12:0 a.m.50 views

KLA67450 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

8.8CVSS9.8AI score0.72648EPSS
Exploits18References4
openvas
openvas
added 2024/05/15 12:0 a.m.30 views

Slackware: Security Advisory (SSA:2024-135-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.72648EPSS
Exploits18References10
slackware
slackware
added 2024/05/14 7:27 p.m.41 views

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.11.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

8.8CVSS6.5AI score0.72648EPSS
Exploits18
ubuntucve
ubuntucve
added 2024/05/14 6:15 p.m.46 views

CVE-2024-4367

A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

8.8CVSS7.5AI score0.72648EPSS
Exploits15References10
cvelist
cvelist
added 2024/05/14 5:21 p.m.79 views

CVE-2024-4367

A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

6.6AI score0.72648EPSS
Exploits15References6
kaspersky
kaspersky
added 2024/05/14 12:0 a.m.31 views

KLA67588 Multiple vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, gain privileges, perform cross-site scripting attack. Below is a complete list of...

9.8CVSS10AI score0.72648EPSS
Exploits23References4
nessus
nessus
added 2024/05/14 12:0 a.m.30 views

Mozilla Thunderbird < 115.11

The version of Thunderbird installed on the remote Windows host is prior to 115.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-23 advisory. - Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10. Some of these bugs showed...

8.8CVSS8.2AI score0.72648EPSS
Exploits18References7
circl
circl
added 2024/05/08 11:25 a.m.3 views

CVE-2024-4367

creationtimestamp| type| source ---|---|--- 2024-05-08 11:25:59+00:00| published-proof-of-concept| https://t.me/HackingInsights/173 2024-05-20 10:07:13+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/7350 2024-05-20 23:19:37+00:00| published-proof-of-concept|...

8.8CVSS7.1AI score0.72648EPSS
Exploits15References58
openvas
openvas
added 2024/03/04 12:0 a.m.14 views

openSUSE: Security Advisory for apache (SUSE-SU-2023:4367-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS8.2AI score0.01855EPSS
Exploits0References2
circl
circl
added 2024/02/01 4:11 p.m.6 views

CVE-2013-4367

creationtimestamp| type| source ---|---|--- 2024-02-01 16:11:54+00:00| seen| https://t.me/ctinow/177642...

7.8CVSS7.5AI score0.00323EPSS
Exploits0References1
kaspersky
kaspersky
added 2023/08/23 12:0 a.m.34 views

KLA61310 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Audio can be exploited to cause denial of servi...

8.8CVSS9.4AI score0.45912EPSS
Exploits2References5
nvd
nvd
added 2023/08/21 5:15 p.m.12 views

CVE-2022-4367

Rejected reason: Duplicate, use CVE-2023-4279 instead...

7.5AI score
Exploits1
mscve
mscve
added 2023/08/21 7:0 a.m.34 views

Chromium: CVE-2023-4367 Insufficient policy enforcement in Extensions API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.2AI score0.00617EPSS
Exploits0
openvas
openvas
added 2023/08/18 12:0 a.m.30 views

Debian: Security Advisory (DSA-5479-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9AI score0.45912EPSS
Exploits2References4
Rows per page
Query Builder