Lucene search
K

11 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Firefox

The z-order of browser windows can be manipulated to hide the fullscreen notifications. This could potentially be used to carry out a spoofing attack. This vulnerability has been fixed in Firefox 135 and Thunderbird 135...

4.3CVSS5.3AI score0.00352EPSS
Exploits0References2
OSV
OSV
added 2025/02/14 12:12 p.m.4 views

OESA-2025-1108 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security Fixes: Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed...

9.8CVSS7.5AI score0.0057EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/02/12 9:37 a.m.5 views

firefox: thunderbird: Certificate length was not properly checked

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed...

8.8CVSS7.3AI score0.00376EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/02/11 4:42 p.m.5 views

firefox: thunderbird: Certificate length was not properly checked

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed...

8.8CVSS7.3AI score0.00376EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/02/06 11:37 a.m.7 views

firefox: thunderbird: Potential opening of private browsing tabs in normal browsing windows

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak...

6.5CVSS6.8AI score0.00313EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/02/05 3:48 a.m.3 views

SUSE CVE-2025-1013

A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak. This vulnerability was fixed in Firefox 135, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135...

3.1CVSS7AI score0.00313EPSS
Exploits0References12
AlpineLinux
AlpineLinux
added 2025/02/04 2:15 p.m.3 views

CVE-2025-1012

A race during concurrent delazification could have led to a use-after-free. This vulnerability affects Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135...

9.8CVSS8.3AI score0.00436EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2025/02/04 2:15 p.m.6 views

CVE-2025-1020

Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 135 and Thunderbird 135...

9.8CVSS7.2AI score0.00524EPSS
Exploits0References3
OSV
OSV
added 2025/02/04 2:15 p.m.1 views

DEBIAN-CVE-2025-0510

Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability was fixed in Thunderbird 128.7 and Thunderbird 135...

6.5CVSS8.4AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2025/02/04 2:15 p.m.5 views

UBUNTU-CVE-2025-1020

Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 135 and Thunderbird 135...

9.8CVSS7.4AI score0.00524EPSS
Exploits0References8
OSV
OSV
added 2025/02/04 2:15 p.m.10 views

UBUNTU-CVE-2025-1019

The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability was fixed in Firefox 135 and Thunderbird 135...

4.3CVSS5.8AI score0.00352EPSS
Exploits0References8
Rows per page
Query Builder