Lucene search
K

4 matches found

OSV
OSV
added 2022/06/13 1:34 p.m.4 views

SUSE-SU-2022:2062-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 91.9.1 MFSA 2022-19 bsc1199768: - CVE-2022-1802: Prototype pollution in Top-Level Await implementation bmo1770137. - CVE-2022-1529: Untrusted input used in JavaScript object indexing, leading to prototype...

9.8CVSS9AI score0.26709EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2022/05/27 7:33 p.m.5 views

Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...

8.8CVSS7.4AI score0.17103EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/05/27 7:6 p.m.3 views

Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...

8.8CVSS7.4AI score0.17103EPSS
Exploits0References5
OSV
OSV
added 2022/05/25 6:46 p.m.3 views

MGASA-2022-0207 Updated firefox/thunderbird packages fix security vulnerability

Prototype pollution in Top-Level Await implementation. CVE-2022-1802 Untrusted input used in JavaScript object indexing, leading to prototype pollution. CVE-2022-1529...

8.8CVSS8.6AI score0.26709EPSS
Exploits0References5
Rows per page
Query Builder