Lucene search
K

145 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Firefox

A malicious website can enter fullscreen mode while simultaneously triggering a WebAuthn prompt. This could have obscured the fullscreen notification and could have been exploited in a spoofing attack. This vulnerability affects Firefox versions earlier than 119...

4.3CVSS6.1AI score0.00586EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Firefox and Thunderbird

When exiting fullscreen mode, an iframe could mislead the browser regarding the current state of fullscreen, potentially causing confusion for users or leading to spoofing attacks. This vulnerability affects Thunderbird 91.10, Firefox 101, and Firefox ESR 91.10...

6.5CVSS6.9AI score0.00584EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Firefox

An attacker was able to perform out-of-bounds read or write operations on a JavaScript object by exploiting a bug related to range-based bounds checks. This vulnerability affects Firefox versions prior to 124.0.1...

9.8CVSS6.9AI score0.22935EPSS
Exploits2References2
NVD
NVD
added 2026/04/07 1:16 p.m.2 views

CVE-2026-5732

Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability was fixed in Firefox 149.0.2, Firefox ESR 140.9.1, Thunderbird 149.0.2, and Thunderbird 140.9.1...

8.8CVSS0.0035EPSS
Exploits0References32
AlpineLinux
AlpineLinux
added 2026/04/07 12:43 p.m.3 views

CVE-2026-5733

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 149.0.2 and Thunderbird 149.0.2...

8.8CVSS5.8AI score0.00304EPSS
Exploits0References3
OSV
OSV
added 2026/03/24 1:16 p.m.4 views

UBUNTU-CVE-2026-4709

Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00463EPSS
Exploits0References11
AlpineLinux
AlpineLinux
added 2026/03/24 12:30 p.m.1 views

CVE-2026-4719

Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00433EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/24 12:30 p.m.3 views

CVE-2026-4727

Denial-of-service in the Libraries component in NSS. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

7.5CVSS7.9AI score0.0053EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/03/24 12:30 p.m.3 views

CVE-2026-4726

Denial-of-service in the XML component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

7.5CVSS7.9AI score0.0053EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/24 12:30 p.m.0 views

CVE-2026-4726

Denial-of-service in the XML component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

7.5CVSS7.2AI score0.0053EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/24 12:30 p.m.2 views

CVE-2026-4712

Information disclosure in the Widget: Cocoa component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00385EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/03/24 12:30 p.m.20 views

CVE-2026-4704 Denial-of-service in the WebRTC: Signaling component

Denial-of-service in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

0.00414EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/24 12:30 p.m.3 views

CVE-2026-4723

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

9.8CVSS7.9AI score0.00393EPSS
Exploits0
NVD
NVD
added 2026/02/24 2:16 p.m.4 views

CVE-2026-2772

Use-after-free in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS0.00469EPSS
Exploits0References34
AlpineLinux
AlpineLinux
added 2026/02/24 1:33 p.m.5 views

CVE-2026-2790

Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00229EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/02/24 1:33 p.m.1 views

CVE-2026-2782 Privilege escalation in the Netmonitor component

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

5.8AI score0.00282EPSS
Exploits0References5
CVE
CVE
added 2026/02/24 1:32 p.m.60 views

CVE-2026-2757

CVE-2026-2757 (FF/Thunderbird) is confirmed with root cause: incorrect boundary conditions in the WebRTC: Audio/Video component, fixed in Firefox 148, Firefox ESR 115.33/140.8 ESR, Thunderbird 148/140.8. Affected products explicitly include Firefox and Thunderbird lines in multiple advisories (AL...

9.8CVSS5.8AI score0.00491EPSS
Exploits0References34Affected Software2
RedHat Linux
RedHat Linux
added 2026/02/09 9:34 a.m.5 views

firefox: thunderbird: Information disclosure in the Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure in the Networking component...

5.3CVSS5.7AI score0.00411EPSS
Exploits0References5
CVE
CVE
added 2026/01/27 3:58 p.m.25 views

CVE-2026-24868

CVE-2026-24868 describes a mitigation bypass in Firefox’s Privacy: Anti-Tracking component, affecting Firefox versions earlier than 147.0.2. The vulnerability is tied to a bypass of mitigation controls in the Anti-Tracking module; no exploit vectors or root-cause details are provided in the suppl...

6.5CVSS5.8AI score0.00177EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/27 3:58 p.m.22 views

CVE-2026-24869 Use-after-free in the Layout: Scrolling and Overflow component

Use-after-free in the Layout: Scrolling and Overflow component. This vulnerability was fixed in Firefox 147.0.2...

0.00232EPSS
Exploits0References2
Rows per page
Query Builder