Lucene search
K

11 matches found

OSV
OSV
added 2026/05/19 12:0 a.m.13 views

ALSA-2026:18479 Important: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: firefox: thunderbird: CSP Bypass and XSS Exposure via Web Compatibility Shi...

8.8CVSS5.7AI score0.00768EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 9 : firefox-128.5.1-1.el9_5.ML.1 (AXSA:2024-9493:42)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9493:42 advisory. firefox: thunderbird: CSP Bypass and XSS Exposure via Web Compatibility Shims CVE-2024-11694 firefox: thunderbird: Unhandled Exception in Add-on...

8.8CVSS8.3AI score0.00768EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/12/03 1:47 a.m.4 views

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

5.4CVSS7.2AI score0.0035EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/12/02 4:56 p.m.3 views

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

5.4CVSS7.2AI score0.0035EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/12/02 1:57 a.m.5 views

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

5.4CVSS7.2AI score0.0035EPSS
Exploits0References9
SUSE Linux
SUSE Linux
added 2024/11/27 8:34 a.m.5 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 128.5.0 ESR, fixed various security fixes and other quality improvements, MFSA 2024-64 bsc1233695: CVE-2024-11691: Memory corruption in Apple GPU drivers CVE-2024-11692: Select list elements could be shown...

9.8CVSS10AI score0.00833EPSS
Exploits0References20
OSV
OSV
added 2024/11/26 2:15 p.m.1 views

DEBIAN-CVE-2024-11696

The application failed to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw, triggered by an invalid or unsupported extension manifest, could have caused runtime errors that disrupted the signature validation process. As a result, the...

5.4CVSS6.7AI score0.0035EPSS
Exploits0References1
OSV
OSV
added 2022/03/23 10:44 p.m.10 views

USN-5345-1 thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, bypass security restrictions, obtain sensitive information, cause undefined...

9.6CVSS7AI score0.00931EPSS
Exploits5References14
RedHat Linux
RedHat Linux
added 2022/03/14 10:30 a.m.5 views

Mozilla: Time-of-check time-of-use bug when verifying add-on signatures

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When installing an add-on, Firefox verified the signature before prompting the user; but while the user was confirming the prompt, the underlying add-on file could have been modified, and Firefox...

7.5CVSS7.2AI score0.00657EPSS
Exploits1References4
OSV
OSV
added 2022/03/10 6:57 p.m.2 views

USN-5321-1 firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, spoof the browser UI, bypass security restrictions, obtain sensitive information, or execute arbitrary...

9.6CVSS6.7AI score0.00931EPSS
Exploits5References8
RedHat Linux
RedHat Linux
added 2022/03/10 3:29 p.m.6 views

Mozilla: Time-of-check time-of-use bug when verifying add-on signatures

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When installing an add-on, Firefox verified the signature before prompting the user; but while the user was confirming the prompt, the underlying add-on file could have been modified, and Firefox...

7.5CVSS7.2AI score0.00657EPSS
Exploits1References4
Rows per page
Query Builder