Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.5 views

Oracle Linux 8 : firefox (ELSA-2026-27717)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-27717 advisory. 140.12.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 - diable wasisdk to prevent build failure with newer llvm 140.12.0 -...

9.6CVSS6.1AI score0.00476EPSS
Exploits0References30
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in connman

A issue was discovered in the DNS proxy of Connman through version 1.40. The TCP server reply implementation creates an infinite loop if no data is received...

7.5CVSS7.4AI score0.02485EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/05/08 5:17 p.m.17 views

CVE-2026-6659

Crypt::PasswdMD5 versions through 1.42 for Perl generates insecure random values for salts. The built-in rand function is predictable, and unsuitable for cryptography...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References2
NVD
NVD
added 2026/05/06 7:16 p.m.9 views

CVE-2026-8011

Insufficient policy enforcement in Search in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00163EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 7:16 p.m.9 views

CVE-2026-8009

Inappropriate implementation in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5CVSS5.8AI score0.0012EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/06 6:12 p.m.7 views

CVE-2026-7903

Integer overflow in ANGLE in Google Chrome on Mac,Windows prior to 148.0.7778.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00224EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/21 12:41 p.m.3 views

CVE-2026-6785

Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

6AI score0.00513EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/04/15 10:31 a.m.6 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. Some of these bugs showed evidence of memory corruption and we presume th...

9.8CVSS7.3AI score0.00424EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.10 views

Bouncy Castle Java 安全漏洞

Bouncy Castle Java is an open-source encryption algorithm developed by Legion of the Bouncy Castle Inc. Versions of Bouncy Castle Java from 1.49 to 1.84 contained security vulnerabilities. These vulnerabilities were due to the use of defective encryption algorithms, which could allow empty...

6.3CVSS7.1AI score0.00392EPSS
Exploits0References4
OSV
OSV
added 2026/04/08 10:16 p.m.2 views

DEBIAN-CVE-2026-5893

Race in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

6.8CVSS8.6AI score0.0015EPSS
Exploits0References1
OSV
OSV
added 2026/03/23 10:38 p.m.4 views

JLSEC-2026-1 In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of se...

In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes 2400 individual settings entries over and over again. The attack causes th...

7.5CVSS6.6AI score0.05316EPSS
Exploits0References28
RedHat Linux
RedHat Linux
added 2026/03/02 9:15 a.m.5 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume th...

9.8CVSS5.9AI score0.00313EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/09 12:0 a.m.9 views

Janet 缓冲区错误漏洞

Janet is a functional and imperative programming language and bytecode interpreter developed by Janet Language. Versions of janet-lang prior to 1.40.1 contain a buffer error vulnerability. This vulnerability stems from an out-of-bounds read in the function janetcif, which may lead to information...

6.1CVSS6AI score0.00157EPSS
Exploits1References8
OSV
OSV
added 2026/02/02 7:49 p.m.9 views

CVE-2026-24051 OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking

OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking Untrusted Search Paths on macOS/Darwin systems. The resource detection code in sdk/resource/hostid.go executes the ioreg system command using a search pat...

7CVSS5.7AI score0.00157EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/01/06 11:28 a.m.10 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code...

8.1CVSS5.9AI score0.00383EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

Mozilla Firefox 安全漏洞

Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation, U.S.A. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. A security vulnerability exists in versions prior to Mozilla Firefox 146 that stems...

7.5CVSS7.1AI score0.00352EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/30 5:28 a.m.8 views

EUVD-2025-36901

The Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue plugin for WordPress is vulnerable to log file poisoning in all versions up to, and including, 1.47. This makes it possible for unauthenticated attackers to insert arbitrary content into log files, and potentially cause...

6.5CVSS5.6AI score0.00315EPSS
Exploits0References4
CVE
CVE
added 2025/10/20 8:15 p.m.13 views

CVE-2025-62656

CVE-2025-62656 concerns a stored XSS in the Wikimedia Foundation MediaWiki GlobalBlocking extension. The connected sources confirm the vulnerability arises from improper neutralization of input during web page generation, enabling stored cross-site scripting. Affected versions are MediaWiki Globa...

5.8CVSS5.7AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 1:15 p.m.5 views

CVE-2025-11719

Starting in Thunderbird 143, the use of the native messaging API by web extensions on Windows could lead to crashes caused by use-after-free memory corruption. This vulnerability affects Firefox 144 and Thunderbird 144...

9.8CVSS5.8AI score0.00331EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.7 views

PT-2025-41898

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 144 Firefox ESR versions prior to 115.29 Firefox ESR versions prior to 140.4 Thunderbird versions prior to 144 Thunderbird versions prior to 140.4 Description A compromised web process utilizing malicious Inter-Proces...

10CVSS8.7AI score0.09348EPSS
Exploits2References316
Rows per page
Query Builder