Lucene search
K

16 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Firefox

The ShmemCharMapHashEntry code was susceptible to potentially undefined behavior by bypassing the move semantics for one of its data members. This vulnerability affects Firefox versions less than 126...

6.5CVSS7.3AI score0.00372EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Firefox and Thunderbird

A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution within the PDF.js context. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

8.8CVSS7.7AI score0.72648EPSS
Exploits15References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Firefox

Multiple WebRTC threads may have claimed a newly connected audio input, resulting in a use-after-free vulnerability. This vulnerability affects Firefox versions less than 126...

9.8CVSS7.3AI score0.00571EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в firefox

A malicious website might have included an iframe with a malformed URI, resulting in a non-exploitable browser crash. This vulnerability affects Firefox versions earlier than 126...

6.5CVSS5.8AI score0.00389EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/09/03 10:0 p.m.7 views

When a network error occurred during page load, the prior content could have remained in view with a blank URL bar. This could have been used to obfuscate a spoofed web site. This vulnerability affects Firefox < 126.

...

7.5CVSS9.2AI score0.00541EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-4767

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If the browser.privatebrowsing.autostart preference is enabled, IndexedDB files were not properly deleted when the window was closed. This preference is disable...

4.3CVSS7AI score0.00492EPSS
Exploits1References2
OSV
OSV
added 2025/06/27 1:16 p.m.3 views

OESA-2025-1692 firefox security update

Mozilla Firefox is a standalone web browser, designed for standards compliance and performance. Its functionality can be enhanced via a plethora of extensions. Security Fixes: The ShmemCharMapHashEntry code was susceptible to potentially undefined behavior by bypassing the move semantics for one ...

6.5CVSS8.4AI score0.00372EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/05/21 11:16 p.m.3 views

SUSE CVE-2024-4775

An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior. Note: This issue only affects the application when the profiler is running. This vulnerability affects Firefox 126...

5.9CVSS8.6AI score0.00218EPSS
Exploits1References4
Veracode
Veracode
added 2024/05/20 12:16 p.m.19 views

Information Disclosure

Firefox is vulnerable to a Information Disclosure. The vulnerability is due to a network error during page load causing the prior content to remain in view with a blank URL bar, which attackers can use to obfuscate a spoofed website. This vulnerability affects Firefox versions below 126...

7.5CVSS6.2AI score0.00541EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/18 2:48 a.m.3 views

SUSE CVE-2024-4767

If the browser.privatebrowsing.autostart preference is enabled, IndexedDB files were not properly deleted when the window was closed. This preference is disabled by default in Firefox. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

6.1CVSS8.7AI score0.00492EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2024/05/18 2:48 a.m.3 views

SUSE CVE-2024-4768

A bug in popup notifications' interaction with WebAuthn made it easier for an attacker to trick a user into granting permissions. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

6.1CVSS8.5AI score0.00539EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2024/05/18 2:48 a.m.3 views

SUSE CVE-2024-4769

When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird...

6.1CVSS8.5AI score0.00369EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/05/18 2:48 a.m.3 views

SUSE CVE-2024-4771

A memory allocation check was missing which would lead to a use-after-free if the allocation failed. This could have triggered a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox 126...

6.5CVSS9AI score0.00523EPSS
Exploits1References4
OSV
OSV
added 2024/05/14 6:15 p.m.0 views

DEBIAN-CVE-2024-4777

Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 126, Firefox ESR...

8.8CVSS7.7AI score0.00536EPSS
Exploits0References1
OSV
OSV
added 2024/05/14 6:15 p.m.1 views

UBUNTU-CVE-2024-4771

A memory allocation check was missing which would lead to a use-after-free if the allocation failed. This could have triggered a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox 126...

8.6CVSS7.3AI score0.00523EPSS
Exploits1References6
OSV
OSV
added 2024/05/14 6:15 p.m.0 views

UBUNTU-CVE-2024-4775

An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior. Note: This issue only affects the application when the profiler is running. This vulnerability affects Firefox 126...

5.9CVSS6.9AI score0.00218EPSS
Exploits1References6
Rows per page
Query Builder