CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

9.6CVSS5.7AI score0.00417EPSS

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component...

RedHat Linux•added 2026/06/03 1:1 a.m.•7 views

firefox: thunderbird: Privilege escalation in the DOM: Workers component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Privilege escalation in the DOM: Workers component...

8.8CVSS5.7AI score0.00386EPSS

7.5CVSS5.8AI score0.00425EPSS

firefox: Incorrect boundary conditions, integer overflow in the Audio/Video component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions, integer overflow in the Audio/Video component...

9.3CVSS5.7AI score0.00194EPSS

firefox: Same-origin policy bypass in the Networking: HTTP component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Same-origin policy bypass in the Networking: HTTP component...

RedHat Linux•added 2026/06/03 1:1 a.m.•12 views

firefox: thunderbird: Sandbox escape in the Profile Backup component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape in the Profile Backup component...

9.8CVSS5.7AI score0.00309EPSS

Exploits0References7

RedHat Linux•added 2026/06/03 1:1 a.m.•13 views

firefox: thunderbird: Other issue in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Other issue in the JavaScript Engine component...

5.3CVSS5.7AI score0.00215EPSS

8.8CVSS5.9AI score0.00332EPSS

firefox: Memory safety bugs fixed in Firefox ESR 140.11 and Firefox 151

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 140.10 and Firefox 150. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been...

RedHat Linux•added 2026/06/03 1:1 a.m.•9 views

firefox: Information disclosure, sandbox escape in the Security: Process Sandboxing component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure, sandbox escape in the Security: Process Sandboxing component...

8.6CVSS5.7AI score0.00344EPSS

RedHat Linux•added 2026/06/03 1:1 a.m.•8 views

firefox: Integer overflow in the Networking: JAR component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Integer overflow in the Networking: JAR component...

9.8CVSS5.8AI score0.00605EPSS

RedHat Linux•added 2026/06/03 1:1 a.m.•10 views

firefox: Sandbox escape due to use-after-free in the Disability Access APIs component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to use-after-free in the Disability Access APIs component...

9.6CVSS5.7AI score0.00532EPSS

6.5CVSS5.7AI score0.00187EPSS

firefox: thunderbird: Incorrect boundary conditions in the JavaScript Engine: JIT component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript Engine: JIT component...

Fedora•added 2026/06/03 12:52 a.m.•22 views

[SECURITY] Fedora 44 Update: xorg-x11-server-21.1.23-1.fc44

X.Org X11 X server...

5.8AI score

Debian CVE•added 2026/06/03 12:15 a.m.•8 views

CVE-2026-9516

Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throws. To skip a leading 3-byte UTF-8 BOM, decodejson advances the input scalar's string pointer past the mark with SvPVset and restores it only on the normal return...

7.5CVSS5.9AI score0.00375EPSS

Debian CVE•added 2026/06/03 12:15 a.m.•6 views

CVE-2026-9334

Cpanel::JSON::XS versions before 4.41 for Perl allow type confusion via duplicate object keys when dupkeysasarrayref is enabled. decodehv collapses duplicate object keys into an array reference under dupkeysasarrayref. The branch reached for a duplicate key tests SvTYPE oldvalue != SVtRV && SvTYP...

7.3CVSS5.8AI score0.00263EPSS

Tenable Nessus•added 2026/06/03 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-45887

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - afunix: Fix memleak of newsk in unixstreamconnect. When preparepeercred fails in unixstreamconnect, unixreleasesock is not called for newsk, and the memory is...

5.8AI score0.00198EPSS

Exploits0References2

Oracle linux•added 2026/06/03 12:0 a.m.•7 views

expat security update

2.5.0-2 - Fix CVE-2026-45186 - Resolves: RHEL-177979...

7.5CVSS5.8AI score0.00311EPSS

Exploits1

Oracle linux•added 2026/06/03 12:0 a.m.•10 views

thunderbird security update

140.11.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.11.0 - Add OpenELA debranding 140.11.0-1 - Update to 140.11.0 ESR...

9.8CVSS5.8AI score0.00605EPSS