Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-12415

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When %2F was present in a manifest URL, Firefox's AppCache behavior may have become confused and allowed a manifest to be served from a subdirectory. This could...

6.5CVSS7.5AI score0.01272EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-11765

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A compromised content process could send a message to the parent process that would cause the 'Click to Play' permission prompt to be shown. However, due to lac...

6.5CVSS7.5AI score0.00844EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2025/05/19 2:38 p.m.4 views

Astra Linux - уязвимость в firefox

A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox 70...

10CVSS8.8AI score0.00664EPSS
Exploits0References2
OSV
OSV
added 2020/03/25 10:15 p.m.2 views

DEBIAN-CVE-2020-6806

By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.6, Firefox 74, Firefox ESR68.6...

8.8CVSS8.7AI score0.02543EPSS
Exploits0References1
OSV
OSV
added 2020/01/08 9:15 p.m.3 views

CVE-2019-17000

An object tag with a data URI did not correctly inherit the document's Content Security Policy. This allowed a CSP bypass in a cross-origin frame if the document's policy explicitly allowed data: URIs. This vulnerability affects Firefox 70...

6.1CVSS7AI score0.00809EPSS
Exploits0References2
OSV
OSV
added 2019/10/23 12:0 a.m.5 views

UBUNTU-CVE-2019-17001

A Content-Security-Policy that blocks in-line scripts could be bypassed using an object tag to execute JavaScript in the protected document cross-site scripting. This is a separate bypass from CVE-2019-17000.Note: This flaw only affected Firefox 69 and was not present in earlier versions.. This...

6.1CVSS6.9AI score0.00802EPSS
Exploits0References4
Rows per page
Query Builder