Lucene search
K

34 matches found

Debian CVE
Debian CVE
added 2021/12/08 9:19 p.m.42 views

CVE-2021-43542

Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS8.3AI score0.01714EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/12/08 9:19 p.m.49 views

CVE-2021-43542

Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS7.8AI score0.01714EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2021/12/08 2:50 a.m.28 views

CVE-2021-43541

When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS2.2AI score0.01576EPSS
Exploits0References3
OSV
OSV
added 2021/12/08 12:0 a.m.7 views

UBUNTU-CVE-2021-43541

When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS6.7AI score0.01576EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2021/12/08 12:0 a.m.34 views

CVE-2021-43541

When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS6.8AI score0.01576EPSS
Exploits0References7
OSV
OSV
added 2021/12/08 12:0 a.m.4 views

UBUNTU-CVE-2021-43542

Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS6.9AI score0.01714EPSS
Exploits0References8
Veracode
Veracode
added 2020/12/06 4:44 a.m.24 views

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. The vulnerability exists due to insufficient validation in external protocols in Shell Integration which allows a malicious user to launch external programs via a crafted HTML page...

8.8CVSS3.3AI score0.01424EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2018/12/11 4:29 p.m.1 views

DEBIAN-CVE-2018-18354

Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page...

8.8CVSS8.5AI score0.01424EPSS
Exploits0References1
OSV
OSV
added 2018/12/11 4:29 p.m.6 views

CVE-2018-18354

Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page...

8.8CVSS8AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2018/12/11 4:29 p.m.20 views

CVE-2018-18354

Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page...

8.8CVSS7.2AI score0.01424EPSS
Exploits0References1
OSV
OSV
added 2018/12/11 4:29 p.m.3 views

UBUNTU-CVE-2018-18354

Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page...

8.8CVSS7.3AI score0.01424EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2018/12/11 3:0 p.m.21 views

CVE-2018-18354

Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page...

8.8CVSS8.3AI score0.01424EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2018/12/10 10:34 a.m.6 views

chromium-browser: Insufficient data validation in Shell Integration

Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page...

8.8CVSS7.4AI score0.01424EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2018/12/05 6:49 p.m.22 views

CVE-2018-18354

Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page...

8.8CVSS3.6AI score0.01424EPSS
Exploits0References2
Rows per page
Query Builder