Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.3 views

TencentOS Server 3: thunderbird (TSSA-2025:0447)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0447 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.1CVSS7.9AI score0.00538EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-23544

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.01805EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 2:53 a.m.7 views

CVE-2023-1277

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS7.5AI score0.01805EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2025/05/15 3:59 p.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/14 1:53 a.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/14 1:43 a.m.5 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/13 4:5 p.m.5 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/13 3:59 p.m.3 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/13 1:59 p.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/05 11:22 a.m.5 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/05 1:37 a.m.5 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
AlpineLinux
AlpineLinux
added 2025/04/29 2:15 p.m.1 views

CVE-2025-2817

Thunderbird's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the user-privileged process, an attacker could bypass intended access controls, allowing SYSTEM-level file operations...

8.8CVSS6.5AI score0.00538EPSS
Exploits0References7
OSV
OSV
added 2023/12/25 12:15 a.m.8 views

CVE-2023-7093

A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...

7.8CVSS5.2AI score0.00945EPSS
Exploits0References3
Prion
Prion
added 2023/12/25 12:15 a.m.23 views

Command injection

A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...

4.3CVSS7.7AI score0.00945EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/24 11:31 p.m.16 views

CVE-2023-7093 KylinSoft kylin-system-updater com.kylin.systemupgrade Service UpgradeStrategiesDbus.py os command injection

A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...

5.3CVSS7.6AI score0.00945EPSS
Exploits0References3
CVE
CVE
added 2023/12/24 11:31 p.m.52 views

CVE-2023-7093

CVE-2023-7093 affects KylinSoft kylin-system-updater up to version 2.0.5.16-0k2.33. The vulnerability resides in UpgradeStrategiesDbus.py (file: /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py) of the com.kylin.systemupgrade service, where manipulation of the SetDownloadspe...

7.8CVSS6.5AI score0.00945EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2023/12/24 12:0 a.m.4 views

kylinos kylin-system-updater OS Command Injection Vulnerability

kylinos kylin-system-updater is an operating system component from China's KylinSoft kylinos. An operating system command injection vulnerability exists in KylinSoft kylin-system-updater 2.0.5.16-0k2.33 and earlier versions, which originates in /usr/share/kylin-system-...

7.8CVSS7.5AI score0.00945EPSS
Exploits0References2
NVD
NVD
added 2023/03/08 7:15 p.m.30 views

CVE-2023-1277

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS8.1AI score0.01805EPSS
Exploits1References3
OSV
OSV
added 2023/03/08 7:15 p.m.4 views

CVE-2023-1277

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS6.3AI score0.01805EPSS
Exploits1References3
Prion
Prion
added 2023/03/08 7:15 p.m.23 views

Command injection

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

6.8CVSS8AI score0.01805EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder