Lucene search
K

243 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Firefox and Thunderbird

The permission prompt input delay may expire if the window is not in focus. This makes it vulnerable to clickjacking by malicious websites. This vulnerability affects Firefox 124, Firefox ESR 115.10, and Thunderbird 115.10...

6.1CVSS6.8AI score0.00598EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox and Thunderbird

By displaying a form validation message in the correct location at the same time as a permission prompt such as for geolocation, the validation message could potentially obscure the prompt, allowing the user to be tricked into granting the permission. This vulnerability affects Firefox 94,...

4.3CVSS6.5AI score0.01527EPSS
Exploits0References2
OSV
OSV
added 2026/04/14 1:10 p.m.3 views

JLSEC-2026-105 Deno's deno_runtime vulnerable to interactive permission prompt spoofing via improper ANSI stripping

Summary A maliciously crafted permission request can show the spoofed permission prompt by inserting a broken ANSI escape sequence into the request contents. Details In the patch for CVE-2023-28446, Deno is stripping any ANSI escape sequences from the permission prompt, but permissions given to t...

8.8CVSS5.8AI score0.00943EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : firefox-91.9.0-1.0.1.el7.AXS7 (AXSA:2022-3176:11)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3176:11 advisory. Mozilla: Bypassing permission prompt in nested browsing contexts CVE-2022-29909 Mozilla: iframe Sandbox bypass CVE-2022-29911 Mozilla: Fullscreen...

9.8CVSS8.5AI score0.01005EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : firefox-91.9.0-1.el8.ML.1 (AXSA:2022-3174:10)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3174:10 advisory. Mozilla: Bypassing permission prompt in nested browsing contexts CVE-2022-29909 Mozilla: iframe Sandbox bypass CVE-2022-29911 Mozilla: Fullscreen...

9.8CVSS8.5AI score0.01005EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 7 : firefox-91.3.0-1.0.1.el7.AXS7 (AXSA:2021-2530:32)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2530:32 advisory. Mozilla: Use-after-free in HTTP2 Session object Mozilla: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3 Mozilla: iframe sandbox rules d...

10CVSS8.6AI score0.0383EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/12/08 4:57 p.m.3 views

CVE-2025-48597

In multiple locations, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.5AI score0.00074EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2014-1575

Malware in sbrugna...

4.3CVSS7.8AI score0.01941EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-4736

Malware in sbrugna...

6.5CVSS7.8AI score0.01392EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-24960

Malware in sbrugna...

4.3CVSS7.1AI score0.01527EPSS
Exploits0References24
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-3435

Malware in sbrugna...

6.5CVSS7.8AI score0.00844EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-17866

Malware in sbrugna...

6.5CVSS7.9AI score0.01494EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-27558

Malicious code in bioql PyPI...

6.1CVSS7.9AI score0.00598EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-0507

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00601EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-2077

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.003EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2025/09/05 12:0 a.m.5 views

Security update for chromium, gn (important)

openSUSE Security Update: Security update for chromium, gn Announcement ID: openSUSE-SU-2025:0336-1 Rating: important References: 1249093 Cross-References: CVE-2025-9864 CVE-2025-9865 CVE-2025-9866 CVE-2025-9867 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes four...

8.8CVSS7.1AI score0.00353EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-6103

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stagnant permission prompt in Prompts in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass permission policy via a crafted HTML page...

6.5CVSS7.4AI score0.01494EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-38508

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - By displaying a form validity message in the correct location at the same time as a permission prompt such as for geolocation, the validity message could have...

4.3CVSS7.1AI score0.01527EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 3:55 a.m.7 views

CVE-2024-27936

Deno is a JavaScript, TypeScript, and WebAssembly runtime with secure defaults. Starting in version 1.32.1 and prior to version 1.41.0 of the deno library, maliciously crafted permission request can show the spoofed permission prompt by inserting a broken ANSI escape sequence into the request...

8.8CVSS6.7AI score0.00943EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/11/13 3:4 p.m.7 views

firefox: thunderbird: Origin of permission prompt could be spoofed by long URL

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: Truncation of a long URL could have allowed origin spoofing in a permission prompt...

7.5CVSS7.3AI score0.0054EPSS
Exploits0References9
Rows per page
Query Builder