Lucene search
K

80 matches found

UbuntuCve
UbuntuCve
added 2025/07/22 9:15 p.m.2 views

CVE-2025-8038

Thunderbird ignored paths when checking the validity of navigations in a frame. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

9.8CVSS7.3AI score0.00225EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/06/24 12:0 a.m.4 views

CVE-2025-6435

If a user saved a response from the Network tab in Devtools using the Save As context menu option, that file may not have been saved with the .download file extension. This could have led to the user inadvertently running a malicious executable. This vulnerability was fixed in Firefox 140 and...

8.1CVSS7.2AI score0.00372EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/06/18 12:0 a.m.5 views

CVE-2025-6191

Integer overflow in V8 in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.4AI score0.09224EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/06/12 10:16 a.m.5 views

CVE-2025-5996

An issue has been discovered in GitLab CE/EE affecting all versions from 2.1.0 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. A lack of input validation in HTTP responses could allow an authenticated user to cause denial of service...

6.5CVSS5.7AI score0.00649EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2025/06/11 12:15 p.m.5 views

CVE-2025-49709

Certain canvas operations could have lead to memory corruption. This vulnerability was fixed in Firefox 139.0.4...

9.8CVSS7.3AI score0.0058EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/05/27 12:0 a.m.7 views

CVE-2025-5271

Previewing a response in Devtools ignored CSP headers, which could have allowed content injection attacks. This vulnerability was fixed in Firefox 139 and Thunderbird 139...

6.5CVSS6.1AI score0.00257EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/05/09 5:15 p.m.8 views

CVE-2025-0549

An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.3 prior to 17.9.8, from 17.10 prior to 17.10.6, and from 17.11 prior to 17.11.2. A security vulnerability allows attackers to bypass Device OAuth flow protections, enabling authorization form submission through...

6.8CVSS5.8AI score0.0033EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2025/05/09 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-7503-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.5AI score0.00527EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/04/23 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-7402-5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00809EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2025/04/03 12:0 a.m.12 views

Ubuntu: Security Advisory (USN-7406-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.4AI score0.00276EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/04/02 1:15 a.m.17 views

CVE-2025-3073

Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS6.5AI score0.00249EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/04/01 12:0 a.m.10 views

CVE-2025-3035

By first using the AI chatbot in one tab and later activating it in another tab, the document title of the previous tab would leak into the chat prompt. This vulnerability was fixed in Firefox 137...

5.3CVSS6.1AI score0.00276EPSS
Exploits0References4
CVE
CVE
added 2025/03/31 1:28 p.m.87 views

CVE-2023-0881

CVE-2023-0881 : Concrete details show a kernel crash triggered by running DDoS against TCP port 22, due to a backport of a commit related to nft_lookup without subsequent fixes. The issue is addressed by applying the fixes/commits to the linux-bluefield package (Ubuntu) as part of the resolution....

7.5CVSS7.4AI score0.00409EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2025/03/10 9:15 p.m.11 views

CVE-2025-2137

Out of bounds read in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.2AI score0.00363EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/03/06 9:15 a.m.6 views

CVE-2025-1540

An issue has been discovered in GitLab CE/EE for Self-Managed and Dedicated instances affecting all versions from 17.5 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2. It was possible for a user added as an External to read and clone internal projects under certain circumstances."...

4.2CVSS5.8AI score0.0022EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2025/03/04 2:15 p.m.9 views

CVE-2025-1941

Under certain circumstances, a user opt-in setting that Focus should require authentication before use could have been be bypassed distinct from CVE-2025-0245. This vulnerability was fixed in Firefox 136...

9.1CVSS6AI score0.00341EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/02/15 2:15 a.m.11 views

CVE-2025-0996

Inappropriate implementation in Browser UI in Google Chrome on Android prior to 133.0.6943.98 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: High...

5.4CVSS7.1AI score0.00368EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/02/05 12:15 p.m.8 views

CVE-2024-3976

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. It was possible to disclose via the UI the confidential issues title and description from a public project to...

6.5CVSS5.7AI score0.00484EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/01/24 3:15 a.m.11 views

CVE-2024-11931

An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.6.4, from 17.7 prior to 17.7.3, and from 17.8 prior to 17.8.1. Under certain conditions, it may have been possible for users with developer role to exfiltrate protected CI variables via CI lint...

6.4CVSS5.8AI score0.0031EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2025/01/11 4:15 a.m.15 views

CVE-2025-23108

Opening Javascript links in a new tab via long-press in the Firefox iOS client could result in a malicious script spoofing the URL of the new tab. This vulnerability was fixed in Firefox for iOS 134...

4.3CVSS5.8AI score0.00232EPSS
Exploits0References3
Rows per page
Query Builder