Lucene search
K

91 matches found

SUSE CVE
SUSE CVE
added 2026/03/11 4:18 p.m.4 views

SUSE CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/10 6:31 p.m.5 views

EUVD-2026-10505

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References3
OSV
OSV
added 2026/03/10 6:19 p.m.3 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2
NVD
NVD
added 2026/03/10 6:19 p.m.4 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS0.00112EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/10 6:19 p.m.5 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2
OSV
OSV
added 2026/03/10 6:19 p.m.5 views

UBUNTU-CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/03/10 3:3 p.m.3 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/10 3:3 p.m.2 views

CVE-2026-3846 Same-origin policy bypass in the CSS Parsing and Computation component

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

5.8AI score0.00112EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/10 3:3 p.m.3 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox 148.0.2...

5.8AI score0.00112EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/03/10 3:3 p.m.6 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.3AI score0.00112EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.4 views

PT-2026-24212

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 148.0.2 Description A bypass of the same-origin policy exists in the CSS Parsing and Computation component. This allows potentially malicious actors to circumvent security restrictions designed to isolate web pages fr...

8.8CVSS5.8AI score0.00308EPSS
Exploits0References9
FreeBSD
FreeBSD
added 2026/03/10 12:0 a.m.3 views

Firefox -- Same-origin policy bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2018400 reports: Same-origin policy bypass in the CSS Parsing and Computation component...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 5:17 p.m.85 views

CVE-2026-20031

The CVE-2026-20031 entry describes a vulnerability in the HTML CSS module of ClamAV where improper handling of UTF-8 strings during HTML scanning can cause the scanner to terminate (DoS). Attack requires no authentication and can be triggered by submitting a crafted HTML file for scanning on an a...

5.3CVSS6AI score0.00414EPSS
Exploits0References1
Cisco
Cisco
added 2026/03/04 4:0 p.m.10 views

ClamAV Cascading Style Sheets Image Parsing Error Handling Denial of Service Vulnerability

A vulnerability in the HTML Cascading Style Sheets CSS module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit th...

5.3CVSS6AI score0.00414EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-27390

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 149 Firefox ESR versions prior to 115.34 Firefox ESR versions prior to 140.9 Thunderbird versions prior to 149 Thunderbird versions prior to 140.9 Description A use-after-free issue exists in the CSS Parsing and...

10CVSS5.8AI score0.00483EPSS
Exploits0References261
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-0629

Malware in sbrugna...

9.8CVSS8.5AI score0.05899EPSS
Exploits0References19
Veracode
Veracode
added 2024/02/26 5:54 a.m.46 views

Information Exposure

sanitize-html is vulnerable to Information Exposure. The vulnerability is due to the parsing of CSS through the style attribute without disabling source maps, which can allow attackers to infer the file system structure and dependencies of the server...

5.3CVSS6.7AI score0.01018EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2023/12/14 1:15 p.m.5 views

CVE-2023-48631

@adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS...

7.5CVSS5.8AI score0.01121EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/12/14 12:0 a.m.9 views

Adobe css-tools Input Validation Error Vulnerability

Adobe css-tools is a CSS parser/string generator for Node.js from Adobe USA. An input validation error vulnerability exists in adobe css-tools version 4.3.1 and earlier, which stems from being affected by incorrect input validation and may result in a denial of service when attempting to parse CS...

7.5CVSS6.6AI score0.01121EPSS
Exploits0References4
GitLab Advisory Database
GitLab Advisory Database
added 2023/12/14 12:0 a.m.75 views

@adobe/css-tools Improper Input Validation and Inefficient Regular Expression Complexity

Impact @adobe/css-tools version 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS. Patches The issue has been resolved in 4.3.2. Workarounds None References N/A...

7.5CVSS6.7AI score0.01121EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder