Lucene search
K

380 matches found

RedHat Linux
RedHat Linux
added 2024/05/20 1:42 a.m.4 views

Mozilla: Cross-origin responses could be distinguished between script and non-script content-types

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn...

5.9CVSS7.2AI score0.00366EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/05/20 1:41 a.m.5 views

Mozilla: Cross-origin responses could be distinguished between script and non-script content-types

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn...

5.9CVSS7.2AI score0.00366EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/05/20 12:0 a.m.24 views

Debian dla-3817 : thunderbird - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3817 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3817-1 [email protected]...

8.8CVSS8.1AI score0.72648EPSS
Exploits18References14
SUSE CVE
SUSE CVE
added 2024/05/18 2:48 a.m.3 views

SUSE CVE-2024-4769

When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird...

6.1CVSS8.5AI score0.00366EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/05/18 12:0 a.m.45 views

Fedora 40 : firefox (2024-eabe68b149)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-eabe68b149 advisory. - new upstream update 126.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...

9.8CVSS7.7AI score0.72648EPSS
Exploits23References17
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.30 views

Fedora 39 : firefox (2024-a2c6c8afa9)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-a2c6c8afa9 advisory. - new upstream update 126.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...

9.8CVSS7.7AI score0.72648EPSS
Exploits23References17
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.39 views

Oracle Linux 9 : thunderbird (ELSA-2024-2888)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-2888 advisory. 115.11.0-1.0.1 - Add Oracle prefs 115.11.0-1 - Update to 115.11.0 build2 Tenable has extracted the preceding description block directly from the Oracle...

8.8CVSS7.8AI score0.72648EPSS
Exploits18References7
RedHat Linux
RedHat Linux
added 2024/05/16 6:21 p.m.6 views

Mozilla: Cross-origin responses could be distinguished between script and non-script content-types

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn...

5.9CVSS7.2AI score0.00366EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/05/16 6:18 p.m.5 views

Mozilla: Cross-origin responses could be distinguished between script and non-script content-types

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn...

5.9CVSS7.2AI score0.00366EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/05/16 5:46 p.m.8 views

Mozilla: Cross-origin responses could be distinguished between script and non-script content-types

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn...

5.9CVSS7.2AI score0.00366EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/05/16 5:34 p.m.5 views

Mozilla: Cross-origin responses could be distinguished between script and non-script content-types

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn...

5.9CVSS7.2AI score0.00366EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.39 views

Oracle Linux 7 : firefox (ELSA-2024-2881)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-2881 advisory. 115.11.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add...

8.8CVSS7.8AI score0.72648EPSS
Exploits18References7
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.29 views

Debian dla-3815 : firefox-esr - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3815 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3815-1 [email protected]...

8.8CVSS8AI score0.72648EPSS
Exploits18References14
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.52 views

CentOS 7 : firefox (RHSA-2024:2881)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2881 advisory. - A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability...

8.8CVSS8.2AI score0.72648EPSS
Exploits18References7
Mozilla
Mozilla
added 2024/05/15 12:0 a.m.86 views

Security Vulnerabilities fixed in Thunderbird 115.11 — Mozilla

A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. If the browser.privatebrowsing.autostart preference is enabled, IndexedDB files were not properly deleted when the window was closed. This preference is disabled by...

8.8CVSS7.5AI score0.72648EPSS
Exploits18References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/15 12:0 a.m.27 views

Debian dsa-5691 : firefox-esr - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5691 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5691-1 [email protected]...

8.8CVSS8AI score0.72648EPSS
Exploits18References15
RedhatCVE
RedhatCVE
added 2024/05/14 6:54 p.m.27 views

CVE-2024-4769

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn...

6.1CVSS5.9AI score0.00366EPSS
Exploits0References5
OSV
OSV
added 2024/05/14 6:15 p.m.10 views

CVE-2024-4769

When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird...

5.9CVSS6.6AI score
Exploits0References6
NVD
NVD
added 2024/05/14 6:15 p.m.11 views

CVE-2024-4769

When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird...

5.9CVSS5.2AI score0.00366EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/05/14 6:15 p.m.18 views

CVE-2024-4769

When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird...

5.9CVSS6.8AI score0.00366EPSS
Exploits0References10
Rows per page
Query Builder