Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 3:24 a.m.2 views

SUSE CVE-2022-34469

When a TLS Certificate error occurs on a domain protected by the HSTS header, the browser should not allow the user to bypass the certificate error. On Firefox for Android, the user was presented with the option to bypass the error; this could only have been done by the user explicitly. This bug...

8.1CVSS8.3AI score0.00366EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2023/02/15 3:24 a.m.3 views

SUSE CVE-2022-34474

Even when an iframe was sandboxed with allow-top-navigation-by-user-activation, if it received a redirect header to an external protocol the browser would process the redirect and prompt the user as appropriate. This vulnerability affects Firefox 102...

6.1CVSS8.3AI score0.00406EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2023/02/15 3:24 a.m.1 views

SUSE CVE-2022-34482

An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to contain an executable extension, and by extension potentially tricked the user into executing malicious code. While very similar, this is a separate issue from...

8.8CVSS8.5AI score0.00726EPSS
Exploits0References7
OSV
OSVadded 2022/12/22 8:15 p.m.1 views

CVE-2022-34475

SVG use tags that referenced a same-origin document could have resulted in script execution if attacker input was sanitized via the HTML Sanitizer API. This would have required the attacker to reference a same-origin JavaScript file containing the script to be executed. This vulnerability affects...

6.1CVSS7.4AI score
Exploits0References2
OSV
OSVadded 2022/12/22 8:15 p.m.1 views

CVE-2022-34473

The HTML Sanitizer should have sanitized the href attribute of SVG use tags; however it incorrectly did not sanitize xlink:href attributes. This vulnerability affects Firefox 102...

6.1CVSS7.4AI score0.00364EPSS
Exploits0References2
OSV
OSVadded 2022/12/22 8:15 p.m.2 views

DEBIAN-CVE-2022-34470

Session history navigations may have led to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

9.8CVSS8.5AI score0.01073EPSS
Exploits0References1
OSV
OSVadded 2022/07/05 12:0 a.m.1 views

UBUNTU-CVE-2022-34474

Even when an iframe was sandboxed with allow-top-navigation-by-user-activation, if it received a redirect header to an external protocol the browser would process the redirect and prompt the user as appropriate. This vulnerability affects Firefox 102...

6.1CVSS7.1AI score0.00406EPSS
Exploits0References4
OSV
OSVadded 2022/07/05 12:0 a.m.0 views

UBUNTU-CVE-2022-34468

An iframe that was not permitted to run scripts could do so if the user clicked on a javascript: link. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

8.8CVSS7.3AI score0.00945EPSS
Exploits0References5
OSV
OSVadded 2022/07/05 12:0 a.m.0 views

UBUNTU-CVE-2022-34480

Within the lginit function, if several allocations succeed but then one fails, an uninitialized pointer would have been freed despite never being allocated. This vulnerability affects Firefox 102...

8.8CVSS7.3AI score0.00581EPSS
Exploits0References6
Rows per page
Query Builder