CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

SUSE CVE•added 2024/11/27 4:4 a.m.•2 views

SUSE CVE-2024-11695

A crafted URL containing Arabic script and whitespace characters could have hidden the true origin of the page, resulting in a potential spoofing attack. This vulnerability affects Firefox 133, Firefox ESR 128.5, Thunderbird 133, and Thunderbird 128.5...

5.4CVSS6.3AI score0.00167EPSS

Exploits0References13

SUSE CVE•added 2024/11/27 4:4 a.m.•1 views

SUSE CVE-2024-11700

Malicious websites may have been able to perform user intent confirmation through tapjacking. This could have led to users unknowingly approving the launch of external applications, potentially exposing them to underlying vulnerabilities. This vulnerability affects Firefox 133 and Thunderbird 133...

8.1CVSS8.7AI score0.00266EPSS

Exploits0References4

SUSE CVE•added 2024/11/27 3:47 a.m.•3 views

SUSE CVE-2024-53976

Under certain circumstances, navigating to a webpage would result in the address missing from the location URL bar, making it unclear what the URL was for the loaded webpage. This vulnerability affects Firefox for iOS 133...

5.4CVSS6.3AI score0.00237EPSS

Exploits0References3

OSV•added 2024/11/26 2:15 p.m.•0 views

CVE-2024-53976

5.4CVSS5.8AI score0.00237EPSS

Exploits0References2

OSV•added 2024/11/26 2:15 p.m.•1 views

CVE-2024-11708

Missing thread synchronization primitives could have led to a data race on members of the PlaybackParams structure. This vulnerability affects Firefox 133 and Thunderbird 133...

6.5CVSS7.3AI score0.00179EPSS

Exploits0References3

OSV•added 2024/11/26 2:15 p.m.•2 views

CVE-2024-11703

On Android, Firefox may have inadvertently allowed viewing saved passwords without the required device PIN authentication. This vulnerability affects Firefox 133...

5.7CVSS5.8AI score

Exploits0References2

OSV•added 2024/11/26 2:15 p.m.•0 views

CVE-2024-11701

The incorrect domain may have been displayed in the address bar during an interrupted navigation attempt. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox 133 and Thunderbird 133...

4.3CVSS7.3AI score

Exploits0References3

Positive Technologies•added 2024/11/26 12:0 a.m.•2 views

PT-2024-9372

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 133 Thunderbird versions prior to 133 Description: A null pointer dereference may have occurred in the pk12util tool, specifically in the SEC ASN1DecodeItem Util function, when handling malformed or improperly...

9.8CVSS8.5AI score0.30868EPSS

Exploits3References429

Positive Technologies•added 2024/11/25 12:0 a.m.•2 views

PT-2024-10061

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 133 Thunderbird versions prior to 133 Description The issue is related to incorrect restriction of visualized user interface layers in Mozilla Firefox and Thunderbird on Android operating systems. This could allow a...

9.8CVSS8.5AI score0.30868EPSS

Exploits3References417

Positive Technologies•added 2024/11/25 12:0 a.m.•5 views

PT-2024-9960

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions prior to 133 Mozilla Thunderbird versions prior to 133 Description: The issue is related to the NSC DeriveKey function in Mozilla Firefox and Thunderbird, which incorrectly assumes that the phKey parameter is always...

9.8CVSS8.5AI score0.30868EPSS

Exploits3References428

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by