Lucene search
+L

452 matches found

Mozilla
Mozilla
added 2024/08/06 12:0 a.m.29 views

Security Vulnerabilities fixed in Thunderbird 128.1 — Mozilla

Select options could obscure the fullscreen notification dialog. This could be used by a malicious site to perform a spoofing attack. Insufficient checks when processing graphics shared memory could have led to memory corruption. This could be leveraged by an attacker to perform a sandbox escape....

9.8CVSS7AI score0.00638EPSS
Exploits0References10Affected Software1
FreeBSD
FreeBSD
added 2024/08/06 12:0 a.m.16 views

mozilla products -- spoofing attack

[email protected] reports: Select options could obscure the fullscreen notification dialog. This could be used by a malicious site to perform a spoofing attack. This vulnerability affects Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1...

6.5CVSS7AI score0.00509EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.30 views

Fedora 39 : firefox (2024-a2c6c8afa9)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-a2c6c8afa9 advisory. - new upstream update 126.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...

9.8CVSS7.7AI score0.72648EPSS
Exploits23References17
UbuntuCve
UbuntuCve
added 2024/05/14 6:15 p.m.22 views

CVE-2024-4766

Different techniques existed to obscure the fullscreen notification in Firefox for Android. These could have led to potential user confusion and spoofing attacks. This bug only affects Firefox for Android. Other versions of Firefox are unaffected. This vulnerability affects Firefox 126...

4.3CVSS7.2AI score0.00393EPSS
Exploits0References5
CVE
CVE
added 2024/05/14 5:21 p.m.119 views

CVE-2024-4766

Firefox for Android is affected by CVE-2024-4766, which describes techniques used to obscure the fullscreen notification, potentially leading to user confusion and spoofing. The issue affects Firefox

4.3CVSS6AI score0.00393EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/14 12:0 a.m.41 views

Mozilla Firefox < 126.0

The version of Firefox installed on the remote Windows host is prior to 126.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-21 advisory. - Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10. Some of these bugs showed...

9.8CVSS8.3AI score0.72648EPSS
Exploits23References18
Rockylinux
Rockylinux
added 2024/03/12 3:41 p.m.53 views

firefox security update

An update is available for firefox. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Firefox is an open-source web browser, designed for standards...

8.1CVSS8AI score0.00937EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/03/12 12:0 a.m.32 views

Rocky Linux 8 : firefox (RLSA-2024:0955)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0955 advisory. - When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read...

8.1CVSS7.9AI score0.00937EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2024/03/07 12:0 a.m.27 views

CentOS 8 : thunderbird (CESA-2024:0964)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2024:0964 advisory. - When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read...

8.1CVSS7.9AI score0.00937EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2024/03/05 12:0 a.m.18 views

CentOS: Security Advisory for firefox (CESA-2024:0976)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.1AI score0.00937EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/03/04 12:0 a.m.38 views

Debian dla-3747 : firefox-esr - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3747 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3747-1 [email protected]...

8.1CVSS7.5AI score0.00937EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2024/03/04 12:0 a.m.29 views

Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : Thunderbird vulnerabilities (USN-6669-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6669-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsin...

8.8CVSS7.5AI score0.02155EPSS
Exploits2References18
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.15 views

openSUSE Security Advisory (SUSE-SU-2024:0608-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS9.1AI score0.00937EPSS
Exploits1References4
Cent OS
Cent OS
added 2024/02/29 3:9 p.m.66 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2024:0957 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.1CVSS7AI score0.00937EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/02/28 12:0 a.m.29 views

AlmaLinux 9 : firefox (ALSA-2024:0952)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:0952 advisory. - When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. Thi...

8.1CVSS7.9AI score0.00937EPSS
Exploits1References9
OSV
OSV
added 2024/02/27 1:21 a.m.10 views

MGASA-2024-0050 Updated thunderbird packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Out-of-bounds memory read in networking channels. CVE-2024-1546 Alert dialog could have been spoofed on another site. CVE-2024-1547 Fullscreen Notification could have been hidden by select element. CVE-2024-1548 Custom cursor could obscure the...

8.1CVSS7.3AI score0.00937EPSS
Exploits1References4
Mageia
Mageia
added 2024/02/27 1:8 a.m.69 views

Updated rootcerts, nss and firefox packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Timing attack against RSA decryption in TLS. CVE-2023-5388 Out-of-bounds memory read in networking channels. CVE-2024-1546 Alert dialog could have been spoofed on another site. CVE-2024-1547 Fullscreen Notification could have been hidden by selec...

8.1CVSS7.6AI score0.00937EPSS
Exploits1References4
OSV
OSV
added 2024/02/27 1:8 a.m.8 views

MGASA-2024-0049 Updated rootcerts, nss and firefox packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Timing attack against RSA decryption in TLS. CVE-2023-5388 Out-of-bounds memory read in networking channels. CVE-2024-1546 Alert dialog could have been spoofed on another site. CVE-2024-1547 Fullscreen Notification could have been hidden by selec...

8.1CVSS7.6AI score0.00937EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/02/27 12:0 a.m.35 views

Oracle Linux 8 : thunderbird (ELSA-2024-0964)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-0964 advisory. 115.8.0-1.0.1 - Add Oracle modifications 115.8.0-1 - Update to 115.8.0 build1 Tenable has extracted the preceding description block directly from the...

8.1CVSS7.4AI score0.00937EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2024/02/27 12:0 a.m.36 views

Oracle Linux 9 : thunderbird (ELSA-2024-0963)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-0963 advisory. 115.8.0-1.0.1 - Add Oracle modifications 115.8.0-1 - Update to 115.8.0 build1 Tenable has extracted the preceding description block directly from the...

8.1CVSS7.4AI score0.00937EPSS
Exploits1References9
Rows per page
Query Builder