129 matches found
Oracle Linux 7 : firefox (ELSA-2026-8427)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-8427 advisory. - Update to 140.9.0 ESR Orabug: 39361657CVE-2026-4684CVE-2026-4685 CVE-2026-4686CVE-2026-4687CVE-2026-4688CVE-2026-4689CVE-2026-4690...
CVE-2026-4699 vulnerabilities
Vulnerabilities for packages: firefox...
CVE-2026-4699
creationtimestamp| type| source ---|---|--- 2026-03-25 03:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/mozilla-products-multiple-vulnerabilities20260325 2026-03-25 03:00:13+00:00| seen| https://www.mozilla.org/en-US/security/advisories/mfsa2026-20/ 2026-03-25 04:01:21+00:00| seen|...
firefox-esr-140.9.0-1.1 on GA media (moderate)
firefox-esr-140.9.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10413-1 Rating: moderate Cross-References: CVE-2025-59375 CVE-2026-4684 CVE-2026-4685 CVE-2026-4686 CVE-2026-4687 CVE-2026-4688 CVE-2026-4689 CVE-2026-4690 CVE-2026-4691 CVE-2026-4692 CVE-2026-4693 CVE-2026-4694 CVE-2026-4695...
Linux Distros Unpatched Vulnerability : CVE-2026-4699
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9,...
DEBIAN-CVE-2026-4699
Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
CVE-2026-4699
Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
CVE-2026-4699
Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
CVE-2026-4699
Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
CVE-2025-20781
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4699...
EUVD-2018-2886
Malware in sbrugna...
CVE-2022-4699
The MediaElement.js WordPress plugin through 4.2.8 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against...
CVE-2025-4699
creationtimestamp| type| source ---|---|--- 2025-05-15 15:03:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lp7rvhrhhy2o...
CVE-2025-4699
CVE-2025-4699 affects PHPGurukul Apartment Visitors Management System 1.0, with SQL injection in /admin/visitors-form.php via the Category parameter. Remote exploitation is possible and the vulnerability has been disclosed publicly. Multiple connected sources (NVD/Red Hat/CNVD/CVE listings) descr...
CVE-2024-4699 D-Link DAR-8000-10 importhtml.php deserialization
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2024-4699 D-Link DAR-8000-10 importhtml.php deserialization
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2023-4699
creationtimestamp| type| source ---|---|--- 2023-11-06 12:25:53+00:00| seen| https://t.me/cibsecurity/73588 2023-11-17 20:16:19+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5856 2023-11-25 02:13:50+00:00| seen| https://t.me/arpsyndicate/563 2025-02-26 21:25:33+00:00| seen|...
CVE-2023-4699 Arbitrary Command Execution Vulnerability in Mitsubishi Electric proprietary protocol communication of multiple FA products
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series,...
CVE-2023-4699
CVE-2023-4699 describes a Missing Authentication for Critical Function vulnerability affecting Mitsubishi Electric MELSEC-F/iQ-F/iQ-R/iQ-L/Q/L series and related CNC modules. A remote, unauthenticated attacker can send crafted packets to affected devices to execute arbitrary commands, potentially...
CVE-2023-4699 Arbitrary Command Execution Vulnerability in Mitsubishi Electric proprietary protocol communication of multiple FA products
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series,...