Lucene search
K

37 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.2 views

SUSE CVE-2018-5161

Crafted message headers can cause a Thunderbird process to hang on receiving the message. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

4.3CVSS8.9AI score0.02079EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.3 views

SUSE CVE-2018-5162

Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

7.5CVSS9.1AI score0.0198EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.4 views

SUSE CVE-2018-5170

It is possible to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening a remote attachment which is a different file type than expected. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

4.3CVSS9AI score0.0176EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:1319-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.21288EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:1334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.21288EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2018:1334-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.21288EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.36 views

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2018:1334-2)

This update for MozillaFirefox to the ESR 52.8 release fixes the following issues : Mozil to Firefox ESR 52.8 bsc1092548 Security issues fixed : MFSA 2018-12/CVE-2018-5159: Integer overflow and out-of-bounds write in Skia MFSA 2018-12/CVE-2018-5158: Malicious PDF can inject JavaScript into PDF...

9.8CVSS7.7AI score0.21288EPSS
Exploits4References22
OSV
OSV
added 2018/06/11 9:29 p.m.3 views

DEBIAN-CVE-2018-5185

Plaintext of decrypted emails can leak through by user submitting an embedded form. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

6.5CVSS7.5AI score0.01558EPSS
Exploits0References1
OSV
OSV
added 2018/06/11 9:29 p.m.1 views

DEBIAN-CVE-2018-5184

Using remote content in encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

7.5CVSS8.2AI score0.01798EPSS
Exploits0References1
OSV
OSV
added 2018/06/11 9:29 p.m.1 views

DEBIAN-CVE-2018-5183

Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and Firefox ESR 52.8...

9.8CVSS9.3AI score0.0318EPSS
Exploits0References1
OSV
OSV
added 2018/06/11 9:29 p.m.2 views

DEBIAN-CVE-2018-5170

It is possible to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening a remote attachment which is a different file type than expected. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

4.3CVSS8.8AI score0.0176EPSS
Exploits0References1
OSV
OSV
added 2018/06/11 9:29 p.m.3 views

DEBIAN-CVE-2018-5159

An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting in possible out-of-bounds writes. This could lead to a potentially exploitable crash triggerable by web content. This vulnerability affects Thunderbird 52.8,...

9.8CVSS9AI score0.21288EPSS
Exploits3References1
OSV
OSV
added 2018/06/11 9:29 p.m.3 views

DEBIAN-CVE-2018-5161

Crafted message headers can cause a Thunderbird process to hang on receiving the message. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

4.3CVSS6.7AI score0.02079EPSS
Exploits0References1
OSV
OSV
added 2018/06/11 9:29 p.m.5 views

DEBIAN-CVE-2018-5162

Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

7.5CVSS8.3AI score0.0198EPSS
Exploits0References1
Prion
Prion
added 2018/06/11 9:29 p.m.21 views

Code injection

Plaintext of decrypted emails can leak through by user submitting an embedded form. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

4.3CVSS7.2AI score0.01558EPSS
Exploits0References10Affected Software10
Prion
Prion
added 2018/06/11 9:29 p.m.20 views

Information disclosure

Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

5CVSS6.9AI score0.0198EPSS
Exploits0References10Affected Software10
CNVD
CNVD
added 2018/06/06 12:0 a.m.3 views

Mozilla Firefox ESR Buffer Overflow Vulnerability

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the U.S. Firefox ESR is an extended support version of Firefox. A buffer overflow vulnerability exists in Mozilla Firefox ESR prior to version 52.8, which arises from the program failing to perform proper boundar...

8.1CVSS9.4AI score0.05057EPSS
Exploits1References1
CNVD
CNVD
added 2018/06/05 12:0 a.m.4 views

Mozilla Thunderbird Information Disclosure Vulnerability

Mozilla Thunderbird is the United States Mozilla Foundation developed from the Mozilla Application Suite independent of the e-mail client software, support for IMAP, POP mail protocol and HTML mail format. An information disclosure vulnerability exists in Mozilla Thunderbird versions prior to 52....

7.5CVSS8.5AI score0.0198EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/05/24 7:59 p.m.8 views

Mozilla: Encrypted mail leaks plaintext through src attribute

Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

7.5CVSS7.4AI score0.0198EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/05/24 7:59 p.m.5 views

Mozilla: Full plaintext recovery in S/MIME via chosen-ciphertext attack

Using remote content in encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird ESR 52.8 and Thunderbird 52.8...

7.5CVSS7.4AI score0.01798EPSS
Exploits0References5
Rows per page
Query Builder