18 matches found
vulnerability of the Widget component: Mozilla Firefox, Firefox ESR, and Thunderbird email client’s Cocoa browser engine, which allows attackers to gain unauthorized access to protected information.
The vulnerability of the Widget component: Mozilla Firefox, Firefox ESR, and the email client Thunderbird have vulnerabilities related to information processing errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
vulnerability of the Widget component: Mozilla Firefox, Firefox ESR, and Thunderbird email client’s Cocoa browser engine, allowing attackers to execute arbitrary code.
The vulnerability of the Widget component: The Cocoa browser components of Mozilla Firefox, Firefox ESR, and the email client Thunderbird rely on the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component...
firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component...
UBUNTU-CVE-2026-12322
Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...
CVE-2026-12322
Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...
EUVD-2026-37068
Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...
CVE-2026-12322 Clickjacking issue in the Widget: Gtk component
Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...
firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component...
firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component...
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issue Update to Firefox Extended Support Release 140.11.0 ESR MFSA 2026-48 bsc1265212 CVE-2026-8388: Incorrect boundary conditions in the JavaScript Engine: JIT component. CVE-2026-8391: Other issue in the JavaScript Engine component...
CVE-2026-8949
Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...
UBUNTU-CVE-2026-8949
Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...
UBUNTU-CVE-2026-8959
Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...
EUVD-2026-30899
Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...
CVE-2026-6759
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Widget: Cocoa component...
CVE-2025-12245 chatwoot Widget IFrameHelper.js initPostMessageCommunication origin validation
A vulnerability was identified in chatwoot up to 4.7.0. This vulnerability affects the function initPostMessageCommunication of the file app/javascript/sdk/IFrameHelper.js of the component Widget. The manipulation of the argument baseUrl leads to origin validation error. Remote exploitation of th...
PT-2025-43902
Name of the Vulnerable Software and Affected Versions chatwoot versions prior to 4.7.0 Description A flaw exists in chatwoot that allows for origin validation errors. This issue is located within the initPostMessageCommunication function of the app/javascript/sdk/IFrameHelper.js file, part of the...