Lucene search
K

313 matches found

Veracode
Veracode
added 2024/02/03 3:3 a.m.19 views

Improper Handling Of Parameters

firefox is vulnerable to Improper Handling Of Parameters. The vulnerability is due to a compromised content process, which could update the document URI, enabling an attacker to set an arbitrary URI in the address bar or history...

4.3CVSS6.6AI score0.00368EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2024/01/28 2:42 a.m.3 views

SUSE CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS8.5AI score0.00368EPSS
Exploits0References4
CNVD
CNVD
added 2024/01/26 12:0 a.m.17 views

Mozilla Firefox Security Bypass Vulnerability (CNVD-2024-10442)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a security bypass vulnerability caused by an error related to a corrupted content process. An attacker can exploit the vulnerability to modify document URIs...

4.3CVSS6.9AI score0.00368EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/01/25 6:11 p.m.26 views

CVE-2024-0748

A vulnerability was found in Firefox due to a compromised content process updating the document URI. This flaw allows an attacker to set an arbitrary URI in the address bar or history...

4.3CVSS6.7AI score0.00368EPSS
Exploits0References5
OSV
OSV
added 2024/01/23 2:15 p.m.2 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS7.4AI score0.00368EPSS
Exploits0References2
NVD
NVD
added 2024/01/23 2:15 p.m.18 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS5.6AI score0.00368EPSS
Exploits0References2
OSV
OSV
added 2024/01/23 2:15 p.m.3 views

UBUNTU-CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS7.4AI score0.00368EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/01/23 1:48 p.m.27 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

5.8AI score0.00368EPSS
Exploits0References2
CVE
CVE
added 2024/01/23 1:48 p.m.124 views

CVE-2024-0748

CVE-2024-0748 concerns Mozilla Firefox where a compromised content process could update the document URI, enabling an attacker to set an arbitrary URI in the address bar or history. The issue affects Firefox versions earlier than 122 and is addressed by Mozilla in MFSA2024-01, which notes fixes i...

4.3CVSS5.3AI score0.00368EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2024/01/23 12:0 a.m.27 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS6.4AI score0.00368EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/01/23 12:0 a.m.3 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a security bypass vulnerability caused by an error related to a corrupted content process. An attacker can exploit the vulnerability to modify document URIs...

4.3CVSS8.7AI score0.00368EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/01/02 9:3 a.m.2 views

Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation

The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...

6.5CVSS7.3AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/01/02 8:32 a.m.2 views

Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation

The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...

6.5CVSS7.3AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/01/02 8:30 a.m.4 views

Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation

The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...

6.5CVSS7.3AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/01/02 8:22 a.m.4 views

Mozilla: Potential sandbox escape due to <code>VideoBridge</code> lack of texture validation

The Mozilla Foundation Security Advisory describes this flaw as: The VideoBridge allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox...

6.5CVSS7.3AI score0.00958EPSS
Exploits0References6
Veracode
Veracode
added 2023/12/25 2:48 a.m.20 views

Sandbox Escape

Firefox and Thunderbird are vulnerable to Sandbox Escape. The vulnerability is caused because VideoBridge extension allowed any content process to use textures produced by remote decoders. An attacker can abuse this to escape the sandbox...

6.5CVSS6.6AI score0.00958EPSS
Exploits0References10Affected Software3
RedHat Linux
RedHat Linux
added 2023/10/05 3:24 p.m.3 views

Mozilla: Out-of-bounds write in PathOps

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data in a PathRecording, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

6.5CVSS7.1AI score0.01EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/05 2:59 p.m.5 views

Mozilla: Out-of-bounds write in PathOps

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data in a PathRecording, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

6.5CVSS7.1AI score0.01EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/04 1:44 p.m.2 views

Mozilla: Out-of-bounds write in PathOps

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data in a PathRecording, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

6.5CVSS7.1AI score0.01EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/04 1:15 p.m.5 views

Mozilla: Out-of-bounds write in PathOps

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data in a PathRecording, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

6.5CVSS7.1AI score0.01EPSS
Exploits0References4
Rows per page
Query Builder