Lucene search
K

50 matches found

Kaspersky
Kaspersky
added 2026/04/07 12:0 a.m.7 views

KLA90973 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, obtain sensitive information, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Policy bypa...

9.6CVSS7.7AI score0.00608EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : firefox-91.9.0-1.el8.ML.1 (AXSA:2022-3174:10)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3174:10 advisory. Mozilla: Bypassing permission prompt in nested browsing contexts CVE-2022-29909 Mozilla: iframe Sandbox bypass CVE-2022-29911 Mozilla: Fullscreen...

9.8CVSS8.5AI score0.01005EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : firefox-91.9.0-1.0.1.el7.AXS7 (AXSA:2022-3176:11)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3176:11 advisory. Mozilla: Bypassing permission prompt in nested browsing contexts CVE-2022-29909 Mozilla: iframe Sandbox bypass CVE-2022-29911 Mozilla: Fullscreen...

9.8CVSS8.5AI score0.01005EPSS
Exploits3References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2020-27675

Malware in sbrugna...

6.5CVSS7.9AI score0.01709EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.3 views

SUSE CVE-2021-38503

The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame. This vulnerability affects Firefox 94, Thunderbird 91.3, and Firefox ESR 91.3...

7.5CVSS8.7AI score0.0383EPSS
Exploits0References11
OSV
OSV
added 2023/01/10 8:15 p.m.4 views

UBUNTU-CVE-2023-0131

Inappropriate implementation in in iframe Sandbox in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to bypass file download restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS7.3AI score0.00595EPSS
Exploits0References4
OSV
OSV
added 2022/12/22 8:15 p.m.2 views

DEBIAN-CVE-2021-4140

It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

10CVSS8.4AI score0.0134EPSS
Exploits1References1
OSV
OSV
added 2022/12/22 8:15 p.m.10 views

CVE-2021-4140

It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

10CVSS8.8AI score0.0134EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/07/07 12:0 a.m.29 views

Mozilla Firefox ESR Security Advisory (MFSA2022-17) - Mac OS X

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

9.8CVSS8.1AI score0.01005EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2022/07/07 12:0 a.m.30 views

Mozilla Firefox Security Advisory (MFSA2022-16) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

9.8CVSS7.6AI score0.01005EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2022/05/21 12:0 a.m.20 views

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2022:1748-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.5AI score0.01005EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/05/20 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:1757-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.01005EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2022/05/18 1:29 a.m.5 views

Mozilla: iframe Sandbox bypass

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Firefox not protecting against top-level navigations for an iframe sandbox with a policy relaxed through a keyword likely to allow top-navigation-by-user-activation...

6.1CVSS7.2AI score0.00561EPSS
Exploits0References4
OSV
OSV
added 2022/05/06 8:16 p.m.10 views

MGASA-2022-0163 Updated thunderbird packages fix security vulnerability

Incorrect security status shown after viewing an attached email. CVE-2022-1520 Fullscreen notification bypass using popups. CVE-2022-29914 Bypassing permission prompt in nested browsing contexts. CVE-2022-29909 Leaking browser history with CSS variables. CVE-2022-29916 iframe sandbox bypass...

9.8CVSS7.8AI score0.01005EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2022/05/06 12:0 a.m.31 views

CentOS 7 : thunderbird (RHSA-2022:1725)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:1725 advisory. - When viewing an email message A, which contains an attached message B, where B is encrypted or digitally signed or both, Thunderbird may show an...

9.8CVSS7.9AI score0.01005EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2022/05/05 12:0 a.m.35 views

RHEL 8 : thunderbird (RHSA-2022:1727)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:1727 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.0. Security Fixes: Mozilla:...

9.8CVSS7.6AI score0.01005EPSS
Exploits3References18
Tenable Nessus
Tenable Nessus
added 2022/05/05 12:0 a.m.34 views

RHEL 7 : thunderbird (RHSA-2022:1725)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:1725 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.0. Security Fixes: Mozilla:...

9.8CVSS7.6AI score0.01005EPSS
Exploits3References18
Tenable Nessus
Tenable Nessus
added 2022/05/04 12:0 a.m.42 views

RHEL 8 : firefox (RHSA-2022:1701)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:1701 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS8AI score0.01005EPSS
Exploits3References14
OpenVAS
OpenVAS
added 2022/04/27 12:0 a.m.23 views

Mozilla Firefox Security Advisory (MFSA2022-10) - Linux

The remote host is missing an update for Mozilla Firefox, announced via the advisory MFSA2022-10. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...

9.6CVSS6.7AI score0.00931EPSS
Exploits5References9
ATTACKERKB
ATTACKERKB
added 2022/04/05 1:15 a.m.6 views

CVE-2022-0461

Policy bypass in COOP in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to bypass iframe sandbox via a crafted HTML page...

6.5CVSS6.8AI score0.00836EPSS
Exploits0References3
Rows per page
Query Builder