Lucene search
+L

13 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.4 views

SUSE CVE-2020-26953

It was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a phishing attack or otherwise confuse the user. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

4.3CVSS8.3AI score0.01267EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.2 views

SUSE CVE-2020-26951

A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability...

7.5CVSS8.1AI score0.01038EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.2 views

SUSE CVE-2020-26955

When a user downloaded a file in Firefox for Android, if a cookie is set, it would have been re-sent during a subsequent file download operation on the same domain, regardless of whether the original and subsequent request were in private and non-private browsing modes. Note: This issue only...

6.5CVSS8.6AI score0.0082EPSS
Exploits0References4
OSV
OSV
added 2021/11/02 11:15 p.m.2 views

UBUNTU-CVE-2020-6492

Use after free in ANGLE in Google Chrome prior to 83.0.4103.97 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS7.3AI score0.00699EPSS
Exploits1References4
OSV
OSV
added 2020/12/09 1:15 a.m.4 views

CVE-2020-26962

Cross-origin iframes that contained a login form could have been recognized by the login autofill service, and populated. This could have been used in clickjacking attacks, as well as be read across partitions in dynamic first party isolation. This vulnerability affects Firefox 83...

6.1CVSS6.9AI score0.0069EPSS
Exploits0References2
OSV
OSV
added 2020/12/09 1:15 a.m.3 views

CVE-2020-26957

OneCRL was non-functional in the new Firefox for Android due to a missing service initialization. This could result in a failure to enforce some certificate revocations. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox...

6.5CVSS7.1AI score0.00544EPSS
Exploits0References2
OSV
OSV
added 2020/12/09 1:15 a.m.7 views

UBUNTU-CVE-2020-26966

Searching for a single word from the address bar caused an mDNS request to be sent on the local network searching for a hostname consisting of that string; resulting in an information leak. Note: This issue only affected Windows operating systems. Other operating systems are unaffected.. This...

6.5CVSS7.3AI score0.01338EPSS
Exploits0References3
OSV
OSV
added 2020/12/09 1:15 a.m.13 views

UBUNTU-CVE-2020-26957

OneCRL was non-functional in the new Firefox for Android due to a missing service initialization. This could result in a failure to enforce some certificate revocations. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox...

6.5CVSS7.3AI score0.00544EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/12/01 3:26 p.m.7 views

Mozilla: Potential use-after-free in uses of nsTArray

If the Compact method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

9.3CVSS7.3AI score0.01544EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/11/30 11:12 p.m.6 views

Mozilla: Fullscreen could be enabled without displaying the security UI

It was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a phishing attack or otherwise confuse the user. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

4.3CVSS7.3AI score0.01267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/11/30 10:40 a.m.7 views

Mozilla: Potential use-after-free in uses of nsTArray

If the Compact method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

9.3CVSS7.3AI score0.01544EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/11/30 8:51 a.m.7 views

Mozilla: Potential use-after-free in uses of nsTArray

If the Compact method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

9.3CVSS7.3AI score0.01544EPSS
Exploits0References5
OSV
OSV
added 2020/05/21 4:15 a.m.2 views

UBUNTU-CVE-2020-6467

Use after free in WebRTC in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.01674EPSS
Exploits0References4
Rows per page
Query Builder