Lucene search
K

66 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : thunderbird-102.6.0-2.el9.ML.1 (AXSA:2023-5063:07)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5063:07 advisory. Mozilla: Arbitrary file read from a compromised content process CVE-2022-46872 Mozilla: Memory safety bugs fixed in Firefox ESR 102.6 and Thunderbir...

9.8CVSS8.5AI score0.00921EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.25 views

Amazon Linux 2 : firefox (ALASFIREFOX-2023-008)

The version of firefox installed on the remote host is prior to 102.6.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-008 advisory. The Mozilla Foundation Security Advisory describes this flaw as: An attacker who compromised a content process cou...

9.8CVSS8.4AI score0.00921EPSS
Exploits0References14
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/31 11:4 a.m.39 views

Security Bulletin: Due to use of Mozilla Firefox, IBM Cloud Pak for Multicloud Management Monitoring is vulnerable to multiple vulnerabilities.

Summary Mozilla Firefox ESR is used by IBM Cloud Pak for Multicloud Management Monitoring as part of the selenium scripts / tests agent. Vulnerability Details CVEID:CVE-2023-29539 DESCRIPTION: Mozilla Firefox could allow a remote attacker to download arbitrary files, caused by the truncation of...

9.8CVSS9.7AI score0.00974EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/05/03 12:0 a.m.22 views

GLSA-202305-06 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-06 Mozilla Firefox: Multiple Vulnerabilities - An out of date library libusrsctp contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox This bug only affects Thunderbird for Linux...

9.8CVSS8.5AI score0.00921EPSS
Exploits0References24
Tenable Nessus
Tenable Nessus
added 2023/01/14 12:0 a.m.23 views

Rocky Linux 8 : firefox (RLSA-2022:9067)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:9067 advisory. - A use-after-free in WebGL extensions could have led to a potentially exploitable crash. This vulnerability affects Firefox This bug only affects...

9.8CVSS8.4AI score0.00921EPSS
Exploits0References13
ALT Linux
ALT Linux
added 2022/12/23 12:0 a.m.33 views

Security fix for the ALT Linux 10 package thunderbird version 102.6.0-alt1

102.6.0-alt1 built Dec. 23, 2022 Pavel Vasenkov in task 311857 Dec. 16, 2022 Pavel Vasenkov - New version. - Security fixes: + CVE-2022-46880 Use-after-free in WebGL + CVE-2022-46872 Arbitrary file read from a compromised content process + CVE-2022-46881 Memory corruption in WebGL + CVE-2022-4687...

9.3AI score0.00921EPSS
Exploits0
OSV
OSV
added 2022/12/22 8:15 p.m.7 views

CVE-2022-46880

A missing check related to tex units could have led to a use-after-free and potentially exploitable crash.Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 105. This vulnerability affect...

6.5CVSS9AI score
Exploits0References6
CVE
CVE
added 2022/12/22 12:0 a.m.196 views

CVE-2022-46880

CVE-2022-46880 describes a missing check related to tex units that could cause a use-after-free and an exploitable crash. Affected products include Firefox (ESR < 102.6, and Firefox < 105) and Thunderbird

6.5CVSS7.4AI score0.00653EPSS
Exploits0References6Affected Software3
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.22 views

CVE-2022-46880

A missing check related to tex units could have led to a use-after-free and potentially exploitable crash.Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 105. This vulnerability affect...

7.6AI score0.00653EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.26 views

CVE-2022-46880

A missing check related to tex units could have led to a use-after-free and potentially exploitable crash.Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 105. This vulnerability affect...

6.5CVSS7.8AI score0.00653EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/12/22 12:0 a.m.35 views

CVE-2022-46880

A missing check related to tex units could have led to a use-after-free and potentially exploitable crash.Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 105. This vulnerability affect...

6.5CVSS7.7AI score0.00653EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/12/21 12:0 a.m.38 views

SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2022:4579-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4579-1 advisory. Update to version 102.6 bsc1206242: - CVE-2022-46880: Use-after-free in WebGL - CVE-2022-46872:...

9.8CVSS6.9AI score0.00921EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2022/12/21 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2022:4579-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.00921EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/12/19 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2022-0476)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.00921EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/12/18 12:0 a.m.26 views

Debian: Security Advisory (DSA-5303-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.00921EPSS
Exploits0References4
Mageia
Mageia
added 2022/12/17 8:37 p.m.64 views

Updated firefox packages fix security vulnerability

An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages CVE-2022-46872. A drag-and-dropped file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious...

9.8CVSS1.7AI score0.00921EPSS
Exploits0References4
Debian
Debian
added 2022/12/16 7:13 p.m.25 views

[SECURITY] [DSA 5303-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5303-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 16, 2022 https://www.debian.org/security/faq -...

9.8CVSS9.1AI score0.00921EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/12/16 12:0 a.m.33 views

Scientific Linux Security Update : thunderbird on SL7.x x86_64 (2022:9079)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2022:9079-1 advisory. - Mozilla: Arbitrary file read from a compromised content process CVE-2022-46872 - Mozilla: Memory safety bugs fixed in Firefox ESR 102.6 and...

9.8CVSS7.9AI score0.00921EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/12/16 12:0 a.m.25 views

AlmaLinux 8 : thunderbird (ALSA-2022:9074)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:9074 advisory. - Mozilla: Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration to block remo...

9.8CVSS8.1AI score0.00921EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/12/16 12:0 a.m.21 views

Debian dla-3241 : firefox-esr - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3241 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3241-1 [email protected]...

9.8CVSS8AI score0.00921EPSS
Exploits0References14
Rows per page
Query Builder