Lucene search
K

335 matches found

RedHat Linux
RedHat Linux
added 2024/11/07 3:26 p.m.5 views

firefox: thunderbird: Confusing display of origin for external protocol handler prompt

The Mozilla Foundation's Security Advisory: The origin of an external protocol handler prompt could be obscured using a data: URL within an iframe...

5.4CVSS7.3AI score0.00294EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/11/04 2:3 a.m.7 views

firefox: thunderbird: Confusing display of origin for external protocol handler prompt

The Mozilla Foundation's Security Advisory: The origin of an external protocol handler prompt could be obscured using a data: URL within an iframe...

5.4CVSS7.3AI score0.00294EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/10/31 8:2 p.m.3 views

firefox: thunderbird: Confusing display of origin for external protocol handler prompt

The Mozilla Foundation's Security Advisory: The origin of an external protocol handler prompt could be obscured using a data: URL within an iframe...

5.4CVSS7.3AI score0.00294EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/10/31 8:0 p.m.3 views

firefox: thunderbird: Confusing display of origin for external protocol handler prompt

The Mozilla Foundation's Security Advisory: The origin of an external protocol handler prompt could be obscured using a data: URL within an iframe...

5.4CVSS7.3AI score0.00294EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2024/10/30 4:17 a.m.3 views

SUSE CVE-2024-10460

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

5.3CVSS6.5AI score0.00294EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2024/10/29 2:25 p.m.12 views

CVE-2024-10460

The Mozilla Foundation's Security Advisory: The origin of an external protocol handler prompt could be obscured using a data: URL within an iframe...

5.3CVSS6.4AI score0.00294EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2024/10/29 1:15 p.m.11 views

CVE-2024-10460

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

5.4CVSS6.6AI score0.00294EPSS
Exploits0References7
OSV
OSV
added 2024/10/29 1:15 p.m.9 views

CVE-2024-10460

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

5.3CVSS5.7AI score
Exploits0References7
NVD
NVD
added 2024/10/29 1:15 p.m.14 views

CVE-2024-10460

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

5.4CVSS0.00294EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/10/29 12:19 p.m.18 views

CVE-2024-10460

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

0.00294EPSS
Exploits0References5
CVE
CVE
added 2024/10/29 12:19 p.m.299 views

CVE-2024-10460

The CVE-2024-10460 issue is a data: URL-based spoofing vulnerability in an iframe that obscures the origin of an external protocol handler prompt. Affected: Firefox <132, Firefox ESR <128.4, Thunderbird <128.4, and Thunderbird

5.4CVSS6.3AI score0.00294EPSS
Exploits0References7Affected Software2
Vulnrichment
Vulnrichment
added 2024/10/29 12:19 p.m.8 views

CVE-2024-10460

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

6.4AI score0.00294EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/10/29 12:19 p.m.7 views

CVE-2024-10460

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

5.4CVSS6.7AI score0.00294EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/10/29 12:0 a.m.9 views

Mozilla Firefox < 132.0

The version of Firefox installed on the remote Windows host is prior to 132.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-55 advisory. - Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thunderbird 128.3. Some of these bugs showed evidenc...

9.8CVSS7.7AI score0.00815EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2024/10/29 12:0 a.m.10 views

Mozilla Firefox < 132.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 132.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-55 advisory. - Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thunderbird 128.3. Some of these bugs show...

9.8CVSS7.7AI score0.00815EPSS
Exploits0References12
OSV
OSV
added 2024/09/17 12:55 a.m.26 views

RLSA-2024:6147 Moderate: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import...

6.5CVSS6.8AI score0.01104EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/09/16 12:0 a.m.26 views

Rocky Linux 9 : nodejs:20 (RLSA-2024:5815)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:5815 advisory. nodejs: Bypass network import restriction via data URL CVE-2024-22020 nodejs: fs.lstat bypasses permission model CVE-2024-22018 nodejs: fs.fchown/fchmod...

6.5CVSS6.4AI score0.01104EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/09/16 12:0 a.m.23 views

Rocky Linux 9 : nodejs:18 (RLSA-2024:6147)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6147 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction vi...

6.5CVSS6.6AI score0.01104EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/09/16 12:0 a.m.41 views

Rocky Linux 8 : nodejs:18 (RLSA-2024:6148)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6148 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction vi...

6.5CVSS6.6AI score0.01104EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/09/03 2:32 a.m.40 views

Moderate: Red Hat Security Advisory: nodejs:18 security update

An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.6AI score0.01104EPSS
Exploits1References3
Rows per page
Query Builder