Lucene search
K

149 matches found

hivepro
hivepro
added 2023/04/13 6:27 a.m.12 views

Microsoft Addresses Zero-Day and Wormable Vulnerabilities

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Microsofts April 2023 Patch Tuesday and security updates address one actively exploited the zero-day vulnerability and a total of 97 flaws, consisting of 7 critical and 90 important vulnerabilitie...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.19 views

Debian: Security Advisory (DLA-97-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.8AI score0.06564EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.38 views

Debian: Security Advisory (DLA-139-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.94859EPSS
Exploits29References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:6 a.m.6 views

SUSE CVE-2008-4841

The WordPad Text Converter for Word 97 files in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted 1 .doc, 2 .wri, or 3 .rtf Word 97 file that triggers memory corruption, as exploited in the wild in December 2008. NOTE: ...

9.3CVSS7.8AI score0.4303EPSS
Exploits6References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:55 a.m.7 views

SUSE CVE-2020-21814

A heap based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlwescape ../../programs/escape.c:97...

8.8CVSS8.9AI score0.01064EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:35 a.m.1 views

SUSE CVE-2022-0106

Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.9AI score0.01305EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:35 a.m.3 views

SUSE CVE-2022-0295

Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.9AI score0.0075EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:28 a.m.3 views

SUSE CVE-2022-22761

Web-accessible extension pages pages with a moz-extension:// scheme were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91.6...

8.8CVSS8.6AI score0.00743EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:28 a.m.3 views

SUSE CVE-2022-22764

Mozilla developers Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firefox ESR 91.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

8.8CVSS9.5AI score0.00702EPSS
Exploits0References10
OSV
OSV
added 2022/12/22 8:15 p.m.1 views

DEBIAN-CVE-2022-22756

If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an executable script which would have run arbitrary code after the user clicked on it. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91....

8.8CVSS7.2AI score0.00926EPSS
Exploits1References1
NVD
NVD
added 2022/12/22 8:15 p.m.30 views

CVE-2022-22755

By using XSL Transforms, a malicious webserver could have served a user an XSL document that would continue to execute JavaScript within the bounds of the same-origin policy even after the tab was closed. This vulnerability affects Firefox 97...

8.8CVSS0.00586EPSS
Exploits0References2
OSV
OSV
added 2022/12/22 8:15 p.m.5 views

CVE-2022-0843

Mozilla developers Kershaw Chang, Ryan VanderMeulen, and Randell Jesup reported memory safety bugs present in Firefox 97. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerabilit...

8.8CVSS7.4AI score0.0056EPSS
Exploits0References2
NVD
NVD
added 2022/12/22 8:15 p.m.18 views

CVE-2022-0843

Mozilla developers Kershaw Chang, Ryan VanderMeulen, and Randell Jesup reported memory safety bugs present in Firefox 97. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerabilit...

8.8CVSS0.0056EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.5 views

CVE-2022-22762

Under certain circumstances, a JavaScript alert or prompt could have been shown while another website was displayed underneath it. This could have been abused to trick the user. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox ...

4AI score0.0037EPSS
Exploits0References2
CVE
CVE
added 2022/12/22 12:0 a.m.457 views

CVE-2022-0843

CVE-2022-0843 concerns memory safety bugs in Mozilla Firefox 97 that could be exploited to run arbitrary code, affecting Firefox versions older than 98. The issue is documented across multiple sources (including MFSA 2022-10); the practical impact is potential remote code execution with high seve...

8.8CVSS9.3AI score0.0056EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2022/09/27 12:0 a.m.27 views

Adobe Lightroom Classic Privilege escalation Vulnerability (APSB21-97) - Windows

Adobe Lightroom Classic is privilege escalation vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.6CVSS6.7AI score0.0052EPSS
Exploits0References1
Code423n4
Code423n4
added 2022/08/31 12:0 a.m.10 views

Upgraded Q -> M from 97 [1661943666994]

Judge has assessed an item in Issue 97 as Medium risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...

7AI score
Exploits0
UbuntuCve
UbuntuCve
added 2022/03/09 12:0 a.m.28 views

CVE-2022-0843

Mozilla developers Kershaw Chang, Ryan VanderMeulen, and Randell Jesup reported memory safety bugs present in Firefox 97. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerabilit...

8.8CVSS7.3AI score0.0056EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/02/15 10:56 a.m.5 views

Mozilla: Memory safety bugs fixed in Firefox 97 and Firefox ESR 91.6

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firefox ESR 91.5. Some of these bugs showed evidence of memory corruption, some of which could...

8.8CVSS7.4AI score0.00702EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/02/15 10:37 a.m.4 views

Mozilla: Memory safety bugs fixed in Firefox 97 and Firefox ESR 91.6

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firefox ESR 91.5. Some of these bugs showed evidence of memory corruption, some of which could...

8.8CVSS7.4AI score0.00702EPSS
Exploits0References6
Rows per page
Query Builder