CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2024/10/19 12:0 a.m.•16 views

openSUSE Security Advisory (SUSE-SU-2024:3731-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS10AI score0.30808EPSS

Exploits1References6

SUSE Linux•added 2024/10/18 2:29 p.m.•1 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.3.1 MFSA 2024-52, bsc1231413: CVE-2024-9680: Fixed use-after-free in Animation timeline bmo1923344 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like Ya...

7.8CVSS10AI score0.30808EPSS

Malwarebytes•added 2024/10/16 11:37 a.m.•28 views

Tor Browser and Firefox users should update to fix actively exploited vulnerability

Mozilla has announced a security fix for its Firefox browser which also impacts the closely related Tor Browser. The new version fixes one critical security vulnerability which is reportedly under active exploitation. To address the flaw, both Mozilla and Tor recommend that users update their...

9.8CVSS8AI score0.30808EPSS

Exploits1

RedHat Linux•added 2024/10/16 9:37 a.m.•5 views

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

A remote code execution vulnerability was found in Firefox and Thunderbird. The Mozilla Foundation Security Advisories state: An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines...

RedHat Linux•added 2024/10/16 9:37 a.m.•29 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS7.6AI score0.30808EPSS

RedHat Linux•added 2024/10/16 6:41 a.m.•3 views

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

RedHat Linux•added 2024/10/16 6:34 a.m.•14 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Red Hat Product Security has rated this update as...

9.8CVSS7.6AI score0.30808EPSS

RedHat Linux•added 2024/10/16 6:34 a.m.•2 views

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

Tenable Nessus•added 2024/10/16 12:0 a.m.•10 views

RHEL 8 : firefox (RHSA-2024:8176)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:8176 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Use-after-fr...

9.8CVSS8.7AI score0.30808EPSS

RedHat Linux•added 2024/10/15 11:18 a.m.•3 views

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

RedHat Linux•added 2024/10/15 11:18 a.m.•22 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...

9.8CVSS7.6AI score0.30808EPSS

OpenVAS•added 2024/10/15 12:0 a.m.•16 views

Mageia: Security Advisory (MGASA-2024-0331)

9.8CVSS9.9AI score0.30808EPSS

Tenable Nessus•added 2024/10/15 12:0 a.m.•15 views

RHEL 8 : firefox (RHSA-2024:8131)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:8131 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Use-after-fr...

9.8CVSS8.7AI score0.30808EPSS

CISA KEV Catalog•added 2024/10/15 12:0 a.m.•152 views

Mozilla Firefox Use-After-Free Vulnerability

Mozilla Firefox and Firefox ESR contain a use-after-free vulnerability in Animation timelines that allows for code execution in the content process...

9.8CVSS7.5AI score0.30808EPSS

In wildExploits1

OSV•added 2024/10/14 6:46 p.m.•8 views

MGASA-2024-0331 Updated firefox firefox-l10n packages fix security vulnerabilities

The updated packages fix a security vulnerability: Use-after-free in Animation timeline. CVE-2024-9680 We are having some issues that are delaying the build for some architectures, so for the moment we are releasing this update just for x8664...

9.8CVSS9.8AI score0.30808EPSS

OSV•added 2024/10/14 6:21 a.m.•3 views

USN-7066-1 thunderbird vulnerability

Damien Schaeffer discovered that Thunderbird did not properly manage certain memory operations when processing content in the Animation timelines. An attacker could potentially exploit this issue to achieve arbitrary code execution...

9.8CVSS7.3AI score0.30808EPSS

Ubuntu•added 2024/10/14 3:51 a.m.•10 views

USN-7065-1: Firefox vulnerability

Damien Schaeffer discovered that Firefox did not properly manage memory in the content process when handling Animation timelines, leading to a use after free vulnerability. An attacker could possibly use this issue to achieve remote code execution...

9.8CVSS8.9AI score0.30808EPSS

Exploits1

OSV•added 2024/10/14 3:51 a.m.•2 views

USN-7065-1 firefox vulnerability

9.8CVSS7.5AI score0.30808EPSS