Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-31871

Malicious code in bioql PyPI...

6.5CVSS7.8AI score0.00798EPSS
Exploits0References4
Microsoft KB
Microsoft KB
added 2024/08/06 12:0 a.m.7 views

August 6, 2024, update for Access 2016 (KB5002589)

August 6, 2024, update for Access 2016 KB5002589 This article describes update 5002589 for Microsoft Access 2016 that was released on August 6, 2024.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to...

6.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2023/06/02 5:15 p.m.46 views

CVE-2023-28163

When downloading files through the Save As dialog on Windows with suggested filenames containing environment variable names, Windows would have resolved those in the context of the current user. This bug only affects Firefox on Windows. Other versions of Firefox are unaffected.. This vulnerabilit...

6.5CVSS6.7AI score0.00798EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2023/06/02 12:0 a.m.33 views

CVE-2023-28163

When downloading files through the Save As dialog on Windows with suggested filenames containing environment variable names, Windows would have resolved those in the context of the current user. This bug only affects Firefox on Windows. Other versions of Firefox are unaffected.. This vulnerabilit...

6.5CVSS8.1AI score0.00798EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/22 10:20 a.m.39 views

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 102.9ESR) have affected APM Synthetic Playback Agent

Summary APM Synthetic Playback Agent is vulnerable to Firefox ESR CVE-2023-28163, CVE-2023-25752, CVE-2023-28164, CVE-2023-28162, CVE-2023-25751. Firefox ESR is used by APM Synthetic Playback Agent for running the selenium scripts. The fix includes support for Firefox 102.9 ESR. Vulnerability...

8.8CVSS7.6AI score0.00798EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2023/04/12 12:0 a.m.24 views

Mozilla Thunderbird Security Advisory (MFSA2023-15) - Mac OS X

Thunderbird is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

9.8CVSS7.7AI score0.00974EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/04/03 12:0 a.m.8 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird on Windows operating systems is related to insufficient protection of sensitive data. This vulnerability allows attackers to compromise the confidentiality and integrity of protected information.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird on Windows operating systems is related to insufficient protection of sensitive data during the processing of save requests through the “Save As” dialog box. Exploiting this vulnerability can allow an attacker to...

6.4CVSS6.7AI score0.00798EPSS
Exploits0References11Affected Software4
Tenable Nessus
Tenable Nessus
added 2023/03/22 12:0 a.m.31 views

Amazon Linux 2 : thunderbird (ALAS-2023-1988)

The version of thunderbird installed on the remote host is prior to 102.9.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1988 advisory. The Mozilla Foundation describes this issue as follows: Sometimes, when invalidating JIT code while following an...

8.8CVSS7.9AI score0.00798EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2023/03/22 12:0 a.m.26 views

SUSE SLED15: MozillaFirefox / MozillaFirefox-branding-upstream / etc (SUSE-SU-2023:0835-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0835-1 advisory. Update to version 102.9.0 ESR bsc1209173: - CVE-2023-28159: Fullscreen Notification could have...

8.8CVSS6.7AI score0.00798EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2023/03/17 12:0 a.m.22 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2023:0763-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0763-1 advisory. Update to version 102.9.0 ESR bsc1209173: - CVE-2023-28159: Fullscreen Notification could have been hidden by download popups on...

8.8CVSS6.7AI score0.00798EPSS
Exploits0References28
SUSE CVE
SUSE CVE
added 2023/03/15 3:33 a.m.4 views

SUSE CVE-2023-28163

When downloading files through the Save As dialog on Windows with suggested filenames containing environment variable names, Windows would have resolved those in the context of the current user. This bug only affects Firefox on Windows. Other versions of Firefox are unaffected.. This vulnerabilit...

6.5CVSS6.4AI score0.00798EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/03/15 12:0 a.m.37 views

Mozilla Thunderbird < 102.9

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 102.9. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-11 advisory. - Mozilla developers Timothy Nikkel, Andrew McCreight, and the Mozilla Fuzzing Team reported memory safety...

8.8CVSS8.2AI score0.00798EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/03/15 12:0 a.m.33 views

Mozilla Thunderbird < 102.9

The version of Thunderbird installed on the remote Windows host is prior to 102.9. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-11 advisory. - Mozilla developers Timothy Nikkel, Andrew McCreight, and the Mozilla Fuzzing Team reported memory safety bugs...

8.8CVSS8.2AI score0.00798EPSS
Exploits0References7
Mozilla
Mozilla
added 2023/03/14 12:0 a.m.46 views

Security Vulnerabilities fixed in Firefox ESR 102.9 — Mozilla

Sometimes, when invalidating JIT code while following an iterator, the newly generated code could be overwritten incorrectly. This could lead to a potentially exploitable crash. Dragging a URL from a cross-origin iframe that was removed during the drag could have led to user confusion and website...

8.8CVSS1AI score0.00798EPSS
Exploits0References6Affected Software1
Kaspersky
Kaspersky
added 2023/03/14 12:0 a.m.38 views

KLA48551 Multiple vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in JIT...

8.8CVSS9.3AI score0.00798EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2010/08/03 12:0 a.m.43 views

Akamai Download Manager Arbitrary Download / Execution

------------------------------------------------------------------------ Akamai Download Manager arbitrary file download & execution ------------------------------------------------------------------------ Yorick Koster, April 2009...

7.4AI score
Exploits0
Prion
Prion
added 2006/03/29 1:6 a.m.12 views

Design/Logic Flaw

Genius VideoCAM NB Driver does not drop privileges when saving files, which allows local users to gain privileges by opening arbitrary files via the "save as" dialog...

7.2CVSS7.2AI score0.00498EPSS
Exploits1References5
CVE
CVE
added 2006/03/29 1:0 a.m.32 views

CVE-2006-1484

Genius VideoCAM NB Driver is affected by a local privilege escalation where privileges are not dropped when saving files. The vulnerability enables local users to gain higher privileges by opening arbitrary files through the driver’s save-as dialog. Affected component is the Genius VideoCAM NB Dr...

7.2CVSS6.7AI score0.00498EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder