Lucene search
+L

184 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-2415

Malware in sbrugna...

2.6CVSS6.4AI score0.03394EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-25732

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory...

8.8CVSS8AI score0.00737EPSS
Exploits0References2
OSV
OSV
added 2023/06/02 5:15 p.m.3 views

DEBIAN-CVE-2023-25732

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS7.2AI score0.00737EPSS
Exploits0References1
NVD
NVD
added 2023/06/02 5:15 p.m.21 views

CVE-2023-25732

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS8.2AI score0.00737EPSS
Exploits0References4
Prion
Prion
added 2023/06/02 5:15 p.m.18 views

Design/Logic Flaw

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

6.8CVSS8.1AI score0.00737EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2023/06/02 12:0 a.m.26 views

CVE-2023-25732

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.4AI score0.00737EPSS
Exploits0References4
CVE
CVE
added 2023/06/02 12:0 a.m.186 views

CVE-2023-25732

CVE-2023-25732 involves an out-of-bounds memory write caused by incorrect calculation of the input size when encoding data from inputStream in xpcom. The vulnerability affects Firefox before 110, Thunderbird before 102.8, and Firefox ESR before 102.8. Connected advisories corroborate the issue an...

8.8CVSS8.2AI score0.00737EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVE
added 2023/06/02 12:0 a.m.48 views

CVE-2023-25732

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS8.5AI score0.00737EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2023/06/02 12:0 a.m.27 views

CVE-2023-25732

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS8.5AI score0.00737EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/03/17 12:0 a.m.6 views

The vulnerabilities of Mozilla Firefox, Mozilla Firefox ESR, and the email client Mozilla Thunderbird stem from the fact that when encoding data from “InputStream” into “xpcom”, the size of the encoded input data is calculated incorrectly. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerabilities of Mozilla Firefox, Mozilla Firefox ESR, and the email client Mozilla Thunderbird stem from the fact that when data is encoded from “InputStream” into “xpcom”, the size of the encoded input data is calculated incorrectly. Exploiting this vulnerability allows an attacker to...

7.6CVSS7.5AI score0.00737EPSS
Exploits0References12Affected Software8
Tenable Nessus
Tenable Nessus
added 2023/03/07 12:0 a.m.34 views

Amazon Linux 2 : thunderbird (ALAS-2023-1983)

The version of thunderbird installed on the remote host is prior to 102.8.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1983 advisory. 2024-02-15: CVE-2023-0616 was added to this advisory. If a MIME email combines OpenPGP and OpenPGP MIME data in a...

8.8CVSS7.8AI score0.01812EPSS
Exploits1References30
Tenable Nessus
Tenable Nessus
added 2023/02/23 12:0 a.m.47 views

AlmaLinux 9 : firefox (ALSA-2023:0810)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0810 advisory. - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being...

8.8CVSS7.8AI score0.00817EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/02/21 12:0 a.m.34 views

SUSE SLED15: MozillaFirefox / MozillaFirefox-branding-upstream / etc (SUSE-SU-2023:0461-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0461-1 advisory. Updated to version 102.8.0 ESR bsc1208144: - CVE-2023-25728: Fixed content security policy leak ...

8.8CVSS6.9AI score0.00817EPSS
Exploits1References31
RedHat Linux
RedHat Linux
added 2023/02/20 12:20 p.m.5 views

Mozilla: Out of bounds memory write from EncodeInputStream

The Mozilla Foundation Security Advisory describes this flaw as: When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/02/20 8:35 a.m.4 views

Mozilla: Out of bounds memory write from EncodeInputStream

The Mozilla Foundation Security Advisory describes this flaw as: When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/02/20 8:31 a.m.4 views

Mozilla: Out of bounds memory write from EncodeInputStream

The Mozilla Foundation Security Advisory describes this flaw as: When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/02/20 8:29 a.m.8 views

Mozilla: Out of bounds memory write from EncodeInputStream

The Mozilla Foundation Security Advisory describes this flaw as: When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.65 views

Oracle Linux 8 : thunderbird (ELSA-2023-0821)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-0821 advisory. 102.8.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 -...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2023/02/17 2:5 a.m.2 views

SUSE CVE-2023-25732

When encoding data from an inputStream in xpcom the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS6.5AI score0.00737EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/02/16 12:0 a.m.33 views

Debian dla-3319 : firefox-esr - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3319 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3319-1 [email protected]...

8.8CVSS7.5AI score0.00817EPSS
Exploits0References24
Rows per page
Query Builder