Lucene search
K

8 matches found

RedHat Linux
RedHat Linux
added 2025/11/10 1:45 a.m.6 views

thunderbird: firefox: Some non-writable Object properties could be modified

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: There was a way to change the value of JavaScript Object properties that were supposed to be non-writeable...

6.5CVSS6.5AI score0.0021EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.6 views

AlmaLinux 8 : thunderbird (ALSA-2025:18983)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:18983 advisory. thunderbird: firefox: Memory safety bugs CVE-2025-11714 thunderbird: firefox: Out of bounds read/write in a privileged process triggered by WebGL texture...

9.8CVSS7.1AI score0.00465EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/10/25 12:0 a.m.2 views

SUSE SLED15: MozillaFirefox / MozillaFirefox-branding-upstream / etc (SUSE-SU-2025:3775-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3775-1 advisory. Update to Firefox Extended Support Release 140.4.0 ESR bsc1251263. - CVE-2025-11708:...

9.8CVSS7.3AI score0.00465EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2025/10/20 7:6 p.m.9 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.8AI score0.00465EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2025/10/14 12:27 p.m.3 views

CVE-2025-11708

Use-after-free in MediaTrackGraphImpl::GetInstance. This vulnerability was fixed in Firefox 144, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS7.2AI score0.00465EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/10/14 12:27 p.m.4 views

CVE-2025-11710

A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process. This vulnerability was fixed in Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS7.3AI score0.00385EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/10/14 12:27 p.m.9 views

CVE-2025-11711 Some non-writable Object properties could be modified

There was a way to change the value of JavaScript Object properties that were supposed to be non-writeable. This vulnerability was fixed in Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

0.0021EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.6 views

PT-2025-41897

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 144 Firefox ESR versions prior to 115.29 Firefox ESR versions prior to 140.4 Thunderbird versions prior to 144 Thunderbird versions prior to 140.4 Description A compromised web process could trigger out-of-bounds read...

10CVSS8.7AI score0.09348EPSS
Exploits2References315
Rows per page
Query Builder