Lucene search
K

36 matches found

OSV
OSV
added 2 days ago4 views

ECHO-6798-161C-8954

Bulletin has no description...

7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.4 views

RHEL 10 : thunderbird (RHSA-2026:26539)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:26539 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: Incorrect boundary conditions in the JavaScript...

9.8CVSS5.7AI score0.00605EPSS
Exploits0References40
Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.4 views

RHEL 9 : thunderbird (RHSA-2026:26521)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:26521 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: Incorrect boundary conditions in the JavaScript...

9.8CVSS5.7AI score0.00605EPSS
Exploits0References40
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.13 views

Amazon Linux 2 : thunderbird, --advisory ALAS2-2026-3340 (ALAS-2026-3340)

The version of thunderbird installed on the remote host is prior to 140.11.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3340 advisory. Three inter-frame chunk discard paths in the push-mode APNG parser clear the chunk-header flag without consuming th...

9.8CVSS5.9AI score0.00605EPSS
Exploits0References34
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.14 views

openSUSE 16 Security Update : MozillaFirefox (openSUSE-SU-2026:20789-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20789-1 advisory. This update for MozillaFirefox fixes the following issues - Update to Firefox Extended Support Release 140.11.0 ESR MFSA 2026-48 bsc1265212. MFS...

9.8CVSS6AI score0.00605EPSS
Exploits0References41
Chainguard
Chainguard
added 2026/05/21 7:17 p.m.10 views

CVE-2026-8954 vulnerabilities

Vulnerabilities for packages: firefox...

7.5CVSS5.8AI score0.00425EPSS
Exploits0
Circl
Circl
added 2026/05/19 8:0 p.m.8 views

CVE-2026-8954

creationtimestamp| type| source ---|---|--- 2026-05-19 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/mozilla-products-multiple-vulnerabilities20260520 2026-05-20 02:01:24+00:00| seen| https://bsky.app/profile/slackers.it/post/3mmasq4ron32w 2026-05-20 02:01:31+00:00| seen|...

7.5CVSS5.8AI score0.00425EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/19 2:16 p.m.9 views

CVE-2026-8954

Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

7.5CVSS5.9AI score0.00425EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2026/05/19 12:29 p.m.10 views

CVE-2026-8954

Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

7.5CVSS5.9AI score0.00425EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/19 12:29 p.m.38 views

CVE-2026-8954 Incorrect boundary conditions, integer overflow in the Audio/Video component

Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

0.00425EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-8954

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151,...

7.5CVSS5.9AI score0.00425EPSS
Exploits0References2
OSV
OSV
added 2026/05/12 3:48 a.m.5 views

MINI-84JV-8954-RG33

Bulletin has no description...

7.5CVSS5.7AI score0.00588EPSS
Exploits0
OSV
OSV
added 2026/04/12 2:32 a.m.3 views

MINI-MC69-8954-86MW

Bulletin has no description...

5.5CVSS5.7AI score0.0029EPSS
Exploits0
NVD
NVD
added 2025/08/14 9:15 a.m.5 views

CVE-2025-8954

A vulnerability was identified in PHPGurukul Hospital Management System 4.0. This affects an unknown part of the file /admin/doctor-specilization.php. The manipulation of the argument doctorspecilization leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS0.00384EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 8:47 a.m.6 views

CVE-2019-8954

In Indexhibit 2.1.5, remote attackers can execute arbitrary code via the v parameter in conjunction with the id parameter in a updjxcode=true action to the ndxzstudio/?a=system URI...

8.8CVSS7.9AI score0.02695EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/22 11:16 a.m.7 views

CVE-2024-8954

In composiohq/composio version 0.5.10, the API does not validate the x-api-key header's value during the authentication step. This vulnerability allows an attacker to bypass authentication by providing any random value in the x-api-key header, thereby gaining unauthorized access to the server...

9.8CVSS7.1AI score0.00817EPSS
Exploits1References1
Circl
Circl
added 2025/03/20 11:40 a.m.7 views

CVE-2024-8954

creationtimestamp| type| source ---|---|--- 2025-03-20 11:40:46+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lksmhvkhzs2v 2025-03-20 12:48:32+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114194835835134493...

9.8CVSS9.5AI score0.00817EPSS
Exploits1References2
CVE
CVE
added 2025/03/20 10:10 a.m.81 views

CVE-2024-8954

CVE-2024-8954 affects composiohq/composio 0.5.10, where the API does not validate the x-api-key header during authentication. This allows an attacker to bypass authentication by supplying any value in x-api-key, resulting in unauthorized access to the server. The accompanying metrics indicate a h...

9.8CVSS9.6AI score0.00817EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/06/06 12:26 p.m.8 views

CGA-WMJW-7H95-8954

Bulletin has no description...

5.9CVSS6.6AI score0.00667EPSS
Exploits0
OSV
OSV
added 2020/06/08 5:15 p.m.4 views

CVE-2020-8954

OpenSearch Web browser 1.0.4.9 allows Intent Scheme Hijacking.a link that opens another app in the browser can be manipulated...

5.4CVSS6AI score0.00761EPSS
Exploits0References2
Rows per page
Query Builder