Lucene search
K

6 matches found

Debian CVE
Debian CVE
added 2026/03/24 12:30 p.m.3 views

CVE-2026-4725

Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

10CVSS8AI score0.00318EPSS
Exploits0
OSV
OSV
added 2023/07/05 10:15 a.m.3 views

UBUNTU-CVE-2023-37209

A use-after-free condition existed in NotifyOnHistoryReload where a LoadingSessionHistoryEntry object was freed and a reference to that object remained. This resulted in a potentially exploitable condition when the reference to that object was later reused. This vulnerability affects Firefox 115...

8.8CVSS7.3AI score0.00594EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:50 a.m.6 views

SUSE CVE-2017-5384

Proxy Auto-Config PAC files can specify a JavaScript function called for all URL requests with the full URL path which exposes more information than would be sent to the proxy itself in the case of HTTPS. Normally the Proxy Auto-Config file is specified by the user or machine owner and presumed t...

5.9CVSS6.2AI score0.01521EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:32 a.m.3 views

SUSE CVE-2018-5121

Low descenders on some Tibetan characters in several fonts on OS X are clipped when rendered in the addressbar. When used as part of an Internationalized Domain Name IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating syste...

5.3CVSS8.5AI score0.01471EPSS
Exploits0References4
OSV
OSV
added 2019/07/11 12:0 a.m.2 views

UBUNTU-CVE-2019-11728

The HTTP Alternative Services header, Alt-Svc, can be used by a malicious site to scan all TCP ports of any host that the accessible to a user when web content is loaded. This vulnerability affects Firefox 68...

4.7CVSS6.6AI score0.01117EPSS
Exploits0References4
OSV
OSV
added 2018/06/11 9:29 p.m.5 views

CVE-2017-7822

The AES-GCM implementation in WebCrypto API accepts 0-length IV when it should require a length of 1 according to the NIST Special Publication 800-38D specification. This might allow for the authentication key to be determined in some instances. This vulnerability affects Firefox 56...

5.3CVSS5.8AI score0.01415EPSS
Exploits0References4
Rows per page
Query Builder