Lucene search
K

69 matches found

Cvelist
Cvelist
added 2025/05/23 12:31 p.m.10 views

CVE-2024-9163 User Interface (UI) Misrepresentation of Critical Information in GitLab

A business logic error in GitLab CE/EE affecting all versions starting from 12.1 prior to 17.10.7, 17.11 prior to 17.11.3 and 18.0 prior to 18.0.1 where an attacker can cause a branch name confusion in confidential MRs...

3.5CVSS0.00356EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/12 12:0 a.m.7 views

AlmaLinux 8 : thunderbird (ALSA-2025:4649)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:4649 advisory. thunderbird: User Interface UI Misrepresentation of attachment URL CVE-2025-3523 thunderbird: Information Disclosure of /tmp directory listing CVE-2025-28...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/07 9:10 a.m.14 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Red Hat Product Security has rated this update ...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/07 8:33 a.m.16 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/07 5:58 a.m.13 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/07 12:0 a.m.6 views

RHEL 8 : thunderbird (RHSA-2025:4665)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:4665 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: User Interface UI Misrepresentation of attachmen...

6.4CVSS7AI score0.00313EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/05/06 7:58 a.m.9 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/06 7:51 a.m.9 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.6 views

RHEL 9 : thunderbird (RHSA-2025:4514)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:4514 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: User Interface UI Misrepresentation of attachmen...

6.4CVSS7AI score0.00313EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/05/02 12:0 a.m.36 views

Microsoft Edge (Chromium) < 136.0.3240.50 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 136.0.3240.50. It is, therefore, affected by multiple vulnerabilities as referenced in the May 1, 2025 advisory. - User interface ui misrepresentation of critical information in Microsoft Edge Chromium-based allows an...

9.8CVSS7.3AI score0.00662EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2025/04/30 10:33 a.m.17 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/04/30 12:0 a.m.8 views

RHEL 8 : thunderbird (RHSA-2025:4389)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:4389 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: User Interface UI Misrepresentation of attachmen...

6.4CVSS7AI score0.00313EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/04/28 1:26 a.m.14 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

6.4CVSS6.9AI score0.00313EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/04/28 12:0 a.m.13 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: User Interface UI Misrepresentation of attachment URL CVE-2025-3523 thunderbird: Information Disclosure of /tmp directory listing CVE-2025-2830 thunderbird: Leak of hashed Window credentials via crafted...

6.4CVSS6.4AI score0.00313EPSS
Exploits0References8
OSV
OSV
added 2025/04/24 12:42 p.m.7 views

SUSE-SU-2025:1366-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 128.9.2 bsc1241277 - CVE-2025-3522: Leak of hashed Window credentials via crafted attachment URL - CVE-2025-2830: Information Disclosure of /tmp directory listing - CVE-2025-3523: User Interface UI...

6.4CVSS6.5AI score0.00313EPSS
Exploits0References5
Snyk
Snyk
added 2025/04/09 3:47 p.m.6 views

User Interface (UI) Misrepresentation of Critical Information

Overview DotNetNuke.Core is a references provider to the DotNetNuke.dll to develop extensions for the DNN Platform. Affected versions of this package are vulnerable to User Interface UI Misrepresentation of Critical Information in the GenerateImage function, which does not sanitize URL text. An...

5.1CVSS6.7AI score0.00263EPSS
Exploits0References2
NVD
NVD
added 2025/04/04 1:15 a.m.27 views

CVE-2025-29796

User interface ui misrepresentation of critical information in Microsoft Edge for iOS allows an unauthorized attacker to perform spoofing over a network...

4.7CVSS0.00561EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/05 1:56 p.m.29 views

CVE-2024-52271 PDF Document Spoofing in Documenso

User Interface UI Misrepresentation of Critical Information vulnerability in Documenso allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed e.g. via Google Chrome - Examine the print preview: Will render the vulnerability only, not all...

8.2CVSS0.00208EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/12/05 10:55 a.m.30 views

CVE-2024-52270 PDF Document Spoofing in DropBox Sign(HelloSign)

User Interface UI Misrepresentation of Critical Information vulnerability in DropBox SignHelloSign allows Content Spoofing. Displayed version does not show the layer flattened version, once download, If printed e.g. via Google Chrome - Examine the print preview: Will render the vulnerability only...

8.2CVSS0.00191EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/12/04 12:0 a.m.3 views

Docusign API 安全漏洞

The Docusign API is a secure and extensible API from Docusign, Inc. A security vulnerability exists in the Docusign API that stems from misrepresentation of critical information in the user interface leading to content spoofing...

8.2CVSS6.3AI score0.00353EPSS
Exploits0References4
Rows per page
Query Builder