CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - By rewriting the Host: request headers using the webRequest API, a WebExtension can bypass domain restrictions through domain fronting. This would allow access ...

7.5CVSS7.6AI score0.01823EPSS

Exploits0References2

Tenable Nessus•added 2025/08/08 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2018-12396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability where a WebExtension can run content scripts in disallowed contexts following navigation or other events. This allows for potential privilege...

6.5CVSS7.6AI score0.00705EPSS

Exploits0References2

Tenable Nessus•added 2024/05/11 12:0 a.m.•20 views

RHEL 8 : firefox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - firefox: mixed content warning is not displayed when HTTPS page loads a favicon over HTTP CVE-2018-12403 ...

7.4AI score0.00737EPSS

Exploits0References7

OSV•added 2023/11/11 11:0 p.m.•20 views

RLSA-2023:6188 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.4.0 ESR. Security Fixes: Mozilla: Queued up rendering could have allowed websites to clickjack CVE-2023-5721 Mozilla: Memory safety bugs fixe...

9.8CVSS9.1AI score0.01446EPSS

Exploits0References8

Rockylinux•added 2023/11/11 11:0 p.m.•41 views

firefox security update

An update is available for firefox. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Firefox is an open-source web browser, designed for standards...

9.8CVSS8.1AI score0.01446EPSS

Exploits0

OpenVAS•added 2023/11/07 12:0 a.m.•20 views

Mageia: Security Advisory (MGASA-2023-0308)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.00831EPSS

Exploits0References6

OSV•added 2023/11/06 11:8 p.m.•5 views

MGASA-2023-0308 Updated nss and firefox packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Queued up rendering could have allowed websites to clickjack. CVE-2023-5721 Address bar spoofing via bidirectional characters. CVE-2023-5732 Large WebGL draw could have led to a crash. CVE-2023-5724 WebExtensions could open arbitrary URLs...

9.8CVSS7.7AI score0.00831EPSS

Exploits0References5

RedHat Linux•added 2023/10/30 5:47 p.m.•2 views

Mozilla: WebExtensions could open arbitrary URLs

The Mozilla Foundation Security Advisory describes this flaw as: A malicious installed WebExtension could open arbitrary URLs, which under the right circumstance could be leveraged to collect sensitive user data...

4.3CVSS7.2AI score0.00415EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by