Lucene search
K

13 matches found

Prion
Prion
added 2021/01/07 2:15 p.m.22 views

Memory corruption

Mozilla developers reported memory safety bugs present in Firefox 83 and Firefox ESR 78.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 84, Thunderbi...

6.8CVSS8.9AI score0.01328EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVE
added 2021/01/07 1:49 p.m.28 views

CVE-2020-35113

Mozilla developers reported memory safety bugs present in Firefox 83 and Firefox ESR 78.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 84, Thunderbi...

8.8CVSS10AI score0.01328EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/12/17 12:0 a.m.154 views

Oracle Linux 7 : ELSA-2020-5561-1: / firefox (ELSA-2020-55611)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-55611 advisory. 78.6.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs....

8.8CVSS7.8AI score0.01876EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2020/12/16 9:47 a.m.4 views

Mozilla: Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developer reported memory safety bugs present in Firefox 83 and Firefox ESR 78.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run...

8.8CVSS7.5AI score0.01328EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/12/16 8:16 a.m.8 views

Mozilla: Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developer reported memory safety bugs present in Firefox 83 and Firefox ESR 78.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run...

8.8CVSS7.5AI score0.01328EPSS
Exploits0References5
NVD
NVD
added 2020/12/09 1:15 a.m.13 views

CVE-2020-26968

Mozilla developers reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 83, Firefox E...

9.3CVSS9.2AI score0.01484EPSS
Exploits0References4
Prion
Prion
added 2020/12/09 1:15 a.m.26 views

Design/Logic Flaw

If the Compact method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

9.3CVSS8.1AI score0.01544EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVE
added 2020/12/09 12:24 a.m.36 views

CVE-2020-26965

Some websites have a feature "Show Password" where clicking a button will change a password field into a textbook field, revealing the typed password. If, when using a software keyboard that remembers user input, a user typed their password and used that feature, the type of the password field wa...

6.5CVSS7.9AI score0.01236EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/11/30 7:50 p.m.4 views

Mozilla: Memory safety bugs fixed in Firefox 83 and Firefox ESR 78.5

Mozilla developers reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 83, Firefox E...

9.3CVSS7.5AI score0.01484EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/11/30 12:0 a.m.62 views

RHEL 8 : thunderbird (RHSA-2020:5232)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5232 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.0. Security Fixes: Mozilla:...

9.3CVSS7.6AI score0.0245EPSS
Exploits1References22
RedhatCVE
RedhatCVE
added 2020/11/18 1:9 a.m.43 views

CVE-2020-26965

Some websites have a feature "Show Password" where clicking a button will change a password field into a textbook field, revealing the typed password. If, when using a software keyboard that remembers user input, a user typed their password and used that feature, the type of the password field wa...

6.5CVSS1.8AI score0.01236EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/11/17 12:0 a.m.44 views

CVE-2020-26960

If the Compact method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

9.3CVSS7.2AI score0.01544EPSS
Exploits0References6
Mozilla
Mozilla
added 2020/11/17 12:0 a.m.117 views

Security Vulnerabilities fixed in Firefox ESR 78.5 — Mozilla

A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. When drawing a...

9.3CVSS9.2AI score0.0245EPSS
Exploits1References12Affected Software1
Rows per page
Query Builder