Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 7 : firefox-91.3.0-1.0.1.el7.AXS7 (AXSA:2021-2530:32)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2530:32 advisory. Mozilla: Use-after-free in HTTP2 Session object Mozilla: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3 Mozilla: iframe sandbox rules d...

10CVSS8.6AI score0.0383EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16766

Malware in sbrugna...

5.3CVSS7.5AI score0.01837EPSS
Exploits1References17
RedhatCVE
RedhatCVE
added 2025/05/22 5:49 p.m.11 views

CVE-2020-12270

React Native Bluetooth Scan in Bluezone 1.0.0 uses six-character alphanumeric IDs, which might make it easier for remote attackers to interfere with COVID-19 contact tracing by using many IDs. NOTE: the vendor disputes the relevance of this report because the recipient of an F1 alert will know it...

6.5CVSS7AI score0.01432EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2024/02/26 4:36 a.m.2 views

Mozilla: Alert dialog could have been spoofed on another site

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website with the victim website's URL shown...

6.5CVSS7.3AI score0.00673EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/02/26 2:21 a.m.3 views

Mozilla: Alert dialog could have been spoofed on another site

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website with the victim website's URL shown...

6.5CVSS7.3AI score0.00673EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/02/26 2:20 a.m.2 views

Mozilla: Alert dialog could have been spoofed on another site

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website with the victim website's URL shown...

6.5CVSS7.3AI score0.00673EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/02/26 2:19 a.m.2 views

Mozilla: Alert dialog could have been spoofed on another site

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website with the victim website's URL shown...

6.5CVSS7.3AI score0.00673EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/02/26 1:49 a.m.4 views

Mozilla: Alert dialog could have been spoofed on another site

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website with the victim website's URL shown...

6.5CVSS7.3AI score0.00673EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/02/26 12:29 a.m.1 views

Mozilla: Alert dialog could have been spoofed on another site

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website with the victim website's URL shown...

6.5CVSS7.3AI score0.00673EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/07/07 2:18 a.m.2 views

SUSE CVE-2023-37207

A website could have obscured the fullscreen notification by using a URL with a scheme handled by an external program, such as a mailto URL. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox 115, Firefox ESR 102.13, and Thunderbird 102.13...

6.5CVSS6.2AI score0.00681EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.5 views

SUSE CVE-2017-5026

Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to prevent alerts from being displayed by swapped out frames, which allowed a remote attacker to show alerts on a page they don't control via a crafted HTML page...

4.3CVSS8.7AI score0.01425EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/11/04 5:32 p.m.4 views

Mozilla: Javascript alert box could have been spoofed onto an arbitrary domain

Due to an unusual sequence of attacker-controlled events, a Javascript alert dialog with arbitrary although unstyled contents could be displayed over top an uncontrolled webpage of the attacker's choosing. This vulnerability affects Firefox 94, Thunderbird 91.3, and Firefox ESR 91.3...

4.3CVSS7.4AI score0.01622EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/04 4:47 p.m.5 views

Mozilla: Javascript alert box could have been spoofed onto an arbitrary domain

Due to an unusual sequence of attacker-controlled events, a Javascript alert dialog with arbitrary although unstyled contents could be displayed over top an uncontrolled webpage of the attacker's choosing. This vulnerability affects Firefox 94, Thunderbird 91.3, and Firefox ESR 91.3...

4.3CVSS7.4AI score0.01622EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/03 7:52 p.m.3 views

Mozilla: Javascript alert box could have been spoofed onto an arbitrary domain

Due to an unusual sequence of attacker-controlled events, a Javascript alert dialog with arbitrary although unstyled contents could be displayed over top an uncontrolled webpage of the attacker's choosing. This vulnerability affects Firefox 94, Thunderbird 91.3, and Firefox ESR 91.3...

4.3CVSS7.4AI score0.01622EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/03 4:34 p.m.7 views

Mozilla: Javascript alert box could have been spoofed onto an arbitrary domain

Due to an unusual sequence of attacker-controlled events, a Javascript alert dialog with arbitrary although unstyled contents could be displayed over top an uncontrolled webpage of the attacker's choosing. This vulnerability affects Firefox 94, Thunderbird 91.3, and Firefox ESR 91.3...

4.3CVSS7.4AI score0.01622EPSS
Exploits0References4
OSV
OSV
added 2018/06/11 9:29 p.m.10 views

CVE-2017-7791

On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox ...

5.3CVSS7.8AI score
Exploits0References11
OSV
OSV
added 2017/08/10 12:0 a.m.2 views

UBUNTU-CVE-2017-7791

On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox ...

5.3CVSS6.8AI score0.01837EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2017/01/26 10:2 p.m.5 views

chromium-browser: ui spoofing

Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to prevent alerts from being displayed by swapped out frames, which allowed a remote attacker to show alerts on a page they don't control via a crafted HTML page...

4.3CVSS7.4AI score0.01425EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2013/06/30 7:28 p.m.1 views

CVE-2013-0137

The default configuration of the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2 contains a known SSH private key, which makes it easier for remote attackers to obtain root access, and spoof alerts, via an SSH session...

10CVSS5.6AI score0.13446EPSS
Exploits0References8
Rows per page
Query Builder