Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-2605

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows...

5.9CVSS8AI score0.0018EPSS
Exploits0References2
Redos
Redosadded 2024/08/20 12:0 a.m.26 views

ROS-20240820-01

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code using a specially crafted w...

8.4CVSS8.1AI score0.01767EPSS
Exploits3
Tenable Nessus
Tenable Nessusadded 2024/04/29 12:0 a.m.26 views

Fedora 40 : thunderbird (2024-fc2ae12c31)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-fc2ae12c31 advisory. Update to 115.9.0 https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/ https://www.thunderbird.net/en-US/thunderbird/115.9.0/releasenotes/...

8.8CVSS7.3AI score0.01767EPSS
Exploits4References11
Veracode
Veracodeadded 2024/04/10 9:52 p.m.29 views

Arbitrary Code Execution

Firefox, Firefox ESR, Thunderbird are vulnerable to an Arbitrary Code Execution vulnerability. The vulnerability is due to leveraging the Windows Error Reporter to run arbitrary code, escaping the sandbox...

5.9CVSS6.7AI score0.0018EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessusadded 2024/04/09 12:0 a.m.25 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2024:1147-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1147-1 advisory. - NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attac...

8.8CVSS8.5AI score0.01767EPSS
Exploits4References22
Tenable Nessus
Tenable Nessusadded 2024/03/28 12:0 a.m.21 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaFirefox (SUSE-SU-2024:1002-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1002-1 advisory. - NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attac...

8.8CVSS8.6AI score0.01767EPSS
Exploits5References42
Tenable Nessus
Tenable Nessusadded 2024/03/27 12:0 a.m.33 views

Fedora 38 : thunderbird (2024-5d080305ab)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-5d080305ab advisory. Update to 115.9.0 https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/ https://www.thunderbird.net/en-US/thunderbird/115.9.0/releasenotes/...

8.8CVSS7.3AI score0.01767EPSS
Exploits4References11
Tenable Nessus
Tenable Nessusadded 2024/03/23 12:0 a.m.42 views

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2024:0971-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0971-1 advisory. - NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could potentially allow an attack...

8.8CVSS8.5AI score0.01767EPSS
Exploits4References22
RedhatCVE
RedhatCVEadded 2024/03/21 11:0 a.m.34 views

CVE-2024-2605

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected...

7.5CVSS7.1AI score0.0018EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2024/03/21 3:50 a.m.1 views

SUSE CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

5.9CVSS8.8AI score0.0018EPSS
Exploits0References7
CNVD
CNVDadded 2024/03/21 12:0 a.m.29 views

Code execution vulnerability in multiple Mozilla products (CNVD-2024-14974)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products that...

5.9CVSS7.8AI score0.0018EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/03/20 12:0 a.m.36 views

Fedora 39 : firefox (2024-113454b56b)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-113454b56b advisory. - Updated to 124.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

9.8CVSS7.3AI score0.01767EPSS
Exploits6References13
Tenable Nessus
Tenable Nessusadded 2024/03/20 12:0 a.m.31 views

Fedora 38 : firefox (2024-7e71e9eaba)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-7e71e9eaba advisory. - Updated to 124.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

9.8CVSS7.3AI score0.01767EPSS
Exploits6References13
NVD
NVDadded 2024/03/19 12:15 p.m.16 views

CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

5.9CVSS6.9AI score0.0018EPSS
Exploits0References4
OSV
OSVadded 2024/03/19 12:15 p.m.1 views

CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

5.9CVSS6.1AI score
Exploits0References4
CVE
CVEadded 2024/03/19 12:2 p.m.324 views

CVE-2024-2605

CVE-2024-2605 affects Firefox and related Mozilla products on Windows, where the Windows Error Reporter can be abused as a sandbox escape to run arbitrary code. The description states affected versions: Firefox < 124, Firefox ESR < 115.9, and Thunderbird

5.9CVSS6.8AI score0.0018EPSS
Exploits0References4Affected Software2
Cvelist
Cvelistadded 2024/03/19 12:2 p.m.18 views

CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

7.1AI score0.0018EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/03/19 12:0 a.m.32 views

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2024-079-03)

The version of mozilla-thunderbird installed on the remote host is prior to 115.9.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-079-03 advisory. - NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could...

8.8CVSS8.5AI score0.01767EPSS
Exploits4References11
Mozilla
Mozillaadded 2024/03/19 12:0 a.m.46 views

Security Vulnerabilities fixed in Firefox ESR 115.9 — Mozilla

An unchecked return value in TLS handshake code could have caused a potentially exploitable crash. An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating system...

8.4CVSS9.2AI score0.01672EPSS
Exploits4References10Affected Software1
Tenable Nessus
Tenable Nessusadded 2024/03/19 12:0 a.m.40 views

Mozilla Firefox ESR < 115.9

The version of Firefox ESR installed on the remote Windows host is prior to 115.9. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-13 advisory. - Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs showed...

8.8CVSS8.5AI score0.01767EPSS
Exploits4References11
Rows per page
Query Builder