Lucene search
+L

273 matches found

RedHat Linux
RedHat Linux
added 2020/01/30 10:3 a.m.6 views

Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement

Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR 68.4.1, Thunderbird 68.4.1, and Firefox 72.0.1...

8.8CVSS7.3AI score0.43422EPSS
Exploits7References6
OSV
OSV
added 2020/01/08 10:15 p.m.1 views

DEBIAN-CVE-2019-17008

When using nested workers, a use-after-free could occur during worker destruction. This resulted in a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS8.9AI score0.01877EPSS
Exploits0References1
OSV
OSV
added 2020/01/08 8:15 p.m.5 views

CVE-2019-11758

Mozilla community member Philipp reported a memory safety bug present in Firefox 68 when 360 Total Security was installed. This bug showed evidence of memory corruption in the accessibility engine and we presume that with enough effort that it could be exploited to run arbitrary code. This...

8.8CVSS7.4AI score0.01326EPSS
Exploits1References5
NVD
NVD
added 2020/01/08 8:15 p.m.26 views

CVE-2019-11758

Mozilla community member Philipp reported a memory safety bug present in Firefox 68 when 360 Total Security was installed. This bug showed evidence of memory corruption in the accessibility engine and we presume that with enough effort that it could be exploited to run arbitrary code. This...

8.8CVSS8.6AI score0.01326EPSS
Exploits1References5
Prion
Prion
added 2020/01/08 8:15 p.m.23 views

Memory corruption

Mozilla community member Philipp reported a memory safety bug present in Firefox 68 when 360 Total Security was installed. This bug showed evidence of memory corruption in the accessibility engine and we presume that with enough effort that it could be exploited to run arbitrary code. This...

6.8CVSS8.4AI score0.01326EPSS
Exploits1References5Affected Software4
UbuntuCve
UbuntuCve
added 2020/01/08 8:15 p.m.36 views

CVE-2019-11758

Mozilla community member Philipp reported a memory safety bug present in Firefox 68 when 360 Total Security was installed. This bug showed evidence of memory corruption in the accessibility engine and we presume that with enough effort that it could be exploited to run arbitrary code. This...

8.8CVSS7.3AI score0.01326EPSS
Exploits1References4
Openbugbounty
Openbugbounty
added 2019/12/23 8:34 p.m.8 views

agorasecuritenantes.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1048865 Security Researcher yassinehmimou2 Helped patch 68 vulnerabilities Received 2 Coordinated Disclosure badges , a holder of 2 badges for responsible and coordinated disclosure, found a security vulnerability affecting agorasecuritenantes.com website and its users...

0.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2019/12/10 4:38 p.m.10 views

nss: Empty or malformed p256-ECDH public keys may trigger a segmentation fault

Empty or malformed p256-ECDH public keys may trigger a segmentation fault due values being improperly sanitized before being copied into memory and used. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

7.5CVSS7.1AI score0.02794EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/12/06 12:0 a.m.37 views

NewStart CGSL MAIN 4.06 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0212)

The remote NewStart CGSL host, running version MAIN 4.06, has thunderbird packages installed that are affected by multiple vulnerabilities: - Mozilla developers and community members reported memory safety bugs present in Firefox 67 and Firefox ESR 60.7. Some of these bugs showed evidence of memo...

9.8CVSS7.9AI score0.20271EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2019/11/21 12:0 a.m.45 views

Fedora 31 : thunderbird-enigmail (2019-951d5dcaf9)

Security fix for CVE-2019-14664, CVE-2019-12269 and compatibility with Thunderbird 68 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

7.5CVSS6.7AI score0.0118EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2019/11/21 12:0 a.m.40 views

Fedora 29 : thunderbird-enigmail (2019-941d57ed72)

Security fix for CVE-2019-14664, CVE-2019-12269 and compatibility with Thunderbird 68 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

7.5CVSS6.7AI score0.0118EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2019/11/20 12:0 a.m.43 views

Debian DLA-1997-1 : thunderbird security update

Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code or denial of service. Debian follows the Thunderbird upstream releases. Support for the 60.x series has ended, so starting with this update we're now following the 68.x...

8.8CVSS7.7AI score0.06707EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2019/11/18 12:0 a.m.30 views

Fedora 30 : thunderbird-enigmail (2019-45a744b873)

Security fix for CVE-2019-14664, CVE-2019-12269 and compatibility with Thunderbird 68 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

7.5CVSS6.7AI score0.0118EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2019/11/14 12:0 a.m.18 views

ImageMagick < 7.0.9-0 Denial of Service (DoS) Vulnerability - Mac OS X

ImageMagick is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.3AI score0.01467EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/11/12 12:0 a.m.54 views

Debian DLA-1987-1 : firefox-esr security update

Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, cross-site scripting or denial of service. Debian follows the extended support releases ESR of Firefox. Support for the 60.x seri...

8.8CVSS7AI score0.06707EPSS
Exploits2References10
OpenVAS
OpenVAS
added 2019/11/11 12:0 a.m.162 views

Debian: Security Advisory (DLA-1987-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.06707EPSS
Exploits2References3
Kitploit
Kitploit
added 2019/10/27 8:55 p.m.75 views

Tor Browser v9.0 - Everything you Need to Safely Browse the Internet

Tor Browser 9.0 is the first stable release based on Firefox 68 ESR and contains a number of updates to other components as well including Tor to 0.4.1.6 and OpenSSL to 1.1.1d for desktop versions and Tor to 0.4.1.5 for Android. In addition to all the needed patch rebasing and toolchain updates, ...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/10/24 12:0 a.m.43 views

Mozilla Firefox ESR < 68.2

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 68.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2019-33 advisory. - Mozilla developers and community members Bob Clary, Jason Kratzer, Aaron Klotz, Iain Ireland, Tyson Smith...

8.8CVSS8.5AI score0.06707EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2019/10/24 12:0 a.m.275 views

Mozilla Firefox ESR < 68.2

The version of Firefox ESR installed on the remote Windows host is prior to 68.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2019-33 advisory. - Mozilla developers and community members Bob Clary, Jason Kratzer, Aaron Klotz, Iain Ireland, Tyson Smith, Christia...

8.8CVSS8.5AI score0.06707EPSS
Exploits3References10
Positive Technologies
Positive Technologies
added 2019/10/05 12:0 a.m.16 views

PT-2019-5838 · Imagemagick +5 · Imagemagick +5

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-68 Description: The issue is related to a missing check for a 0 value of replace extent in the SubstituteString function, which can cause an offset p to overflow. This could be triggered by a crafted input...

9.8CVSS6.7AI score0.89855EPSS
Exploits78References375
Rows per page
Query Builder