Lucene search
K

65 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : firefox-91.7.0-3.0.1.el7.AXS7 (AXSA:2022-3096:07)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3096:07 advisory. Mozilla: Use-after-free in XSLT parameter processing CVE-2022-26485 Mozilla: Use-after-free in WebGPU IPC Framework CVE-2022-26486 expat: Malformed ...

9.8CVSS8.5AI score0.34174EPSS
Exploits7References11
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.6 views

MiracleLinux 8 : thunderbird-91.7.0-2.el8.ML.1 (AXSA:2022-3104:04)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3104:04 advisory. Mozilla: Use-after-free in XSLT parameter processing CVE-2022-26485 Mozilla: Use-after-free in WebGPU IPC Framework CVE-2022-26486 expat: Malformed ...

9.8CVSS9.2AI score0.34174EPSS
Exploits7References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:27 a.m.6 views

SUSE CVE-2022-26384

If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91....

9.6CVSS6.9AI score0.00931EPSS
Exploits1References11
Circl
Circl
added 2022/12/22 10:27 p.m.5 views

CVE-2022-26384

creationtimestamp| type| source ---|---|--- 2022-12-22 22:27:04+00:00| seen| https://t.me/cibsecurity/55168...

9.6CVSS7.4AI score0.00931EPSS
Exploits1References1
NVD
NVD
added 2022/12/22 8:15 p.m.23 views

CVE-2022-26384

If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91....

9.6CVSS0.00931EPSS
Exploits1References4
OSV
OSV
added 2022/12/22 8:15 p.m.10 views

CVE-2022-26384

If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91....

9.6CVSS8.7AI score
Exploits0References4
CVE
CVE
added 2022/12/22 12:0 a.m.608 views

CVE-2022-26384

Summary: CVE-2022-26384 is a sandbox bypass in Firefox/Thunderbird caused by allowing popups in an iframe sandbox without allow-scripts, enabling crafted links to execute JavaScript in violation of the sandbox. Connected advisories confirm affected products (Firefox < 98, Firefox ESR < 91.7...

9.6CVSS8.7AI score0.00931EPSS
Exploits1References4Affected Software3
OpenVAS
OpenVAS
added 2022/04/27 12:0 a.m.23 views

Mozilla Firefox Security Advisory (MFSA2022-10) - Linux

The remote host is missing an update for Mozilla Firefox, announced via the advisory MFSA2022-10. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...

9.6CVSS6.7AI score0.00931EPSS
Exploits5References9
OpenVAS
OpenVAS
added 2022/03/30 12:0 a.m.23 views

CentOS: Security Advisory for firefox (CESA-2022:0824)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.3AI score0.34174EPSS
Exploits7References4
OpenVAS
OpenVAS
added 2022/03/30 12:0 a.m.26 views

CentOS: Security Advisory for thunderbird (CESA-2022:0850)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.4AI score0.34174EPSS
Exploits7References4
Cent OS
Cent OS
added 2022/03/29 1:54 p.m.85 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2022:0850 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.8CVSS7.5AI score0.34174EPSS
Exploits7References7
Cent OS
Cent OS
added 2022/03/29 1:53 p.m.126 views

firefox security update

CentOS Errata and Security Advisory CESA-2022:0824 An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS7.5AI score0.34174EPSS
Exploits7References7
OpenVAS
OpenVAS
added 2022/03/24 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-5345-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.8AI score0.00931EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2022/03/23 12:0 a.m.30 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2022:0821-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS7.7AI score0.00931EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/03/23 12:0 a.m.20 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2022:0906-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS7.7AI score0.00931EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/03/22 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2022:0906-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.5AI score0.00931EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2022/03/22 12:0 a.m.47 views

openSUSE 15 Security Update : MozillaThunderbird (openSUSE-SU-2022:0906-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0906-1 advisory. - An attacker could have caused a use-after-free by forcing a text reflow in an SVG object leading to a potentially exploitable crash...

9.6CVSS7.6AI score0.00931EPSS
Exploits4References12
Tenable Nessus
Tenable Nessus
added 2022/03/22 12:0 a.m.42 views

SUSE SLED15 / SLES15 Security Update : MozillaThunderbird (SUSE-SU-2022:0906-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0906-1 advisory. - An attacker could have caused a use-after-free by forcing a text reflow in an SVG object leading to a...

9.6CVSS7.6AI score0.00931EPSS
Exploits4References12
Debian
Debian
added 2022/03/21 7:40 p.m.59 views

[SECURITY] [DSA 5106-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5106-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 21, 2022 https://www.debian.org/security/faq -...

9.6CVSS9.1AI score0.00931EPSS
Exploits4
OSV
OSV
added 2022/03/21 8:47 a.m.11 views

OPENSUSE-SU-2022:0906-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Updated to version 91.7 bsc1196900: - CVE-2022-26381: Fixed an invalid memory access due to text reflow when SVG objects were present. - CVE-2022-26383: Fixed an issue where, when resizing a popup after requesting fullscreen access, t...

9.6CVSS6.7AI score0.00931EPSS
Exploits4References7
Rows per page
Query Builder