CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2023/09/16 12:0 a.m.•23 views

SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2023:3609-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3609-1 advisory. - Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory write v...

Tenable Nessus•added 2023/09/16 12:0 a.m.•31 views

Exploits9References6

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2023:3626-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3626-1 advisory. - Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory write v...

OpenVAS•added 2023/09/16 12:0 a.m.•16 views

Exploits9References6

Fedora: Security Advisory for libwebp (FEDORA-2023-c4fa8a204d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.3AI score0.99739EPSS

Debian•added 2023/09/15 4:40 p.m.•61 views

[SECURITY] [DSA 5498-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5498-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 15, 2023 https://www.debian.org/security/faq -...

8.8CVSS7.4AI score0.99739EPSS

Veracode•added 2023/09/15 1:45 p.m.•62 views

Heap Buffer Overflow

libwebp.so is vulnerable to Out Of Bounds Memory Write. The vulnerability is due to the BuildHuffmanTable function in src/dec/vp8ldec.c improperly allocating memory to the table when parsing a stream, which results in an application crash or Arbitrary Code Execution when reading a crafted webp...

8.8CVSS8.7AI score0.99739EPSS

Exploits9References50Affected Software16

OpenVAS•added 2023/09/15 12:0 a.m.•24 views

Ubuntu: Security Advisory (USN-6367-1)

8.8CVSS9.5AI score0.99739EPSS

OpenVAS•added 2023/09/15 12:0 a.m.•9 views

Debian: Security Advisory (DSA-5496-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.5AI score0.99739EPSS

Exploits9References6

OpenVAS•added 2023/09/15 12:0 a.m.•24 views

Ubuntu: Security Advisory (USN-6368-1)

8.8CVSS7.9AI score0.99739EPSS

OSV•added 2023/09/14 12:10 p.m.•1 views

USN-6369-1 libwebp vulnerability

It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary co...

8.8CVSS6.9AI score0.99739EPSS

Ubuntu•added 2023/09/14 3:30 a.m.•81 views

USN-6368-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass security restrictions, cross-site tracing,...

OSV•added 2023/09/14 3:30 a.m.•8 views

USN-6368-1 thunderbird vulnerabilities

8.8CVSS7AI score0.99739EPSS

Exploits9References7

Ubuntu•added 2023/09/14 2:44 a.m.•81 views

USN-6367-1: Firefox vulnerability

It was discovered that Firefox did not properly manage memory when handling WebP images. If a user were tricked into opening a webpage containing malicious WebP image file, an attacker could potentially exploit these to cause a denial of service or execute arbitrary code. CVE-2023-4863...

8.8CVSS8.1AI score0.99739EPSS

OSV•added 2023/09/14 2:44 a.m.•1 views

USN-6367-1 firefox vulnerability

8.8CVSS7AI score0.99739EPSS

Tenable Nessus•added 2023/09/14 12:0 a.m.•14 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2023:0246-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0246-1 advisory. - Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory write via a crafted...

Tenable Nessus•added 2023/09/14 12:0 a.m.•29 views

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : Thunderbird vulnerabilities (USN-6368-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6368-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsin...

Tenable Nessus•added 2023/09/14 12:0 a.m.•26 views

Exploits9References7

Slackware Linux 15.0 / current mozilla-thunderbird Vulnerability (SSA:2023-256-04)

The version of mozilla-thunderbird installed on the remote host is prior to 115.2.2. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-256-04 advisory. - Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of...

Tenable Nessus•added 2023/09/14 12:0 a.m.•23 views

Slackware Linux 15.0 / current libwebp Vulnerability (SSA:2023-257-01)

The version of libwebp installed on the remote host is prior to 1.3.2. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-257-01 advisory. - Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory...