Lucene search
+L

92 matches found

nessus
nessus
added 2026/03/12 12:0 a.m.3 views

FreeBSD : Firefox -- Same-origin policy bypass (e1e40d50-1de2-11f1-8aff-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the e1e40d50-1de2-11f1-8aff-b42e991fc52e advisory. https://bugzilla.mozilla.org/showbug.cgi?id=2018400 reports: Same-origin policy bypass in the CSS Parsi...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References3
susecve
susecve
added 2026/03/11 4:18 p.m.5 views

SUSE CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References3
euvd
euvd
added 2026/03/10 6:31 p.m.6 views

EUVD-2026-10505

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References3
nvd
nvd
added 2026/03/10 6:19 p.m.5 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS0.00112EPSS
Exploits0References2
osv
osv
added 2026/03/10 6:19 p.m.5 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/03/10 6:19 p.m.6 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2
osv
osv
added 2026/03/10 6:19 p.m.6 views

UBUNTU-CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/03/10 3:3 p.m.2 views

CVE-2026-3846 Same-origin policy bypass in the CSS Parsing and Computation component

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

5.8AI score0.00112EPSS
Exploits0References2
alpinelinux
alpinelinux
added 2026/03/10 3:3 p.m.4 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2
debiancve
debiancve
added 2026/03/10 3:3 p.m.9 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.3AI score0.00112EPSS
Exploits0
attackerkb
attackerkb
added 2026/03/10 3:3 p.m.4 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox 148.0.2...

5.8AI score0.00112EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/03/10 12:0 a.m.4 views

PT-2026-24212

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 148.0.2 Description A bypass of the same-origin policy exists in the CSS Parsing and Computation component. This allows potentially malicious actors to circumvent security restrictions designed to isolate web pages fr...

8.8CVSS5.8AI score0.00308EPSS
Exploits0References9
freebsd
freebsd
added 2026/03/10 12:0 a.m.3 views

Firefox -- Same-origin policy bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2018400 reports: Same-origin policy bypass in the CSS Parsing and Computation component...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References1
cve
cve
added 2026/03/04 5:17 p.m.88 views

CVE-2026-20031

The CVE-2026-20031 entry describes a vulnerability in the HTML CSS module of ClamAV where improper handling of UTF-8 strings during HTML scanning can cause the scanner to terminate (DoS). Attack requires no authentication and can be triggered by submitting a crafted HTML file for scanning on an a...

5.3CVSS6AI score0.00414EPSS
Exploits0References1
cisco
cisco
added 2026/03/04 4:0 p.m.11 views

ClamAV Cascading Style Sheets Image Parsing Error Handling Denial of Service Vulnerability

A vulnerability in the HTML Cascading Style Sheets CSS module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit th...

5.3CVSS6AI score0.00414EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/01/01 12:0 a.m.4 views

PT-2026-27390

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 149 Firefox ESR versions prior to 115.34 Firefox ESR versions prior to 140.9 Thunderbird versions prior to 149 Thunderbird versions prior to 140.9 Description A use-after-free issue exists in the CSS Parsing and...

10CVSS5.8AI score0.00483EPSS
Exploits0References261
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-0629

Malware in sbrugna...

9.8CVSS8.5AI score0.05899EPSS
Exploits0References19
veracode
veracode
added 2024/02/26 5:54 a.m.46 views

Information Exposure

sanitize-html is vulnerable to Information Exposure. The vulnerability is due to the parsing of CSS through the style attribute without disabling source maps, which can allow attackers to infer the file system structure and dependencies of the server...

5.3CVSS6.7AI score0.01018EPSS
Exploits1References6Affected Software1
osv
osv
added 2023/12/14 1:15 p.m.5 views

CVE-2023-48631

@adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS...

7.5CVSS5.8AI score0.01121EPSS
Exploits0References1
cnnvd
cnnvd
added 2023/12/14 12:0 a.m.9 views

Adobe css-tools Input Validation Error Vulnerability

Adobe css-tools is a CSS parser/string generator for Node.js from Adobe USA. An input validation error vulnerability exists in adobe css-tools version 4.3.1 and earlier, which stems from being affected by incorrect input validation and may result in a denial of service when attempting to parse CS...

7.5CVSS6.6AI score0.01121EPSS
Exploits0References4
Rows per page
Query Builder