Lucene search
+L

8 matches found

nessus
nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-26956

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In some cases, removing HTML elements during sanitization would keep existing SVG event handlers and therefore lead to XSS. This vulnerability affects Firefox 8...

6.1CVSS7.5AI score0.01218EPSS
Exploits0References2
nessus
nessus
added 2025/08/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-26960

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If the Compact method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free an...

9.3CVSS8.2AI score0.01544EPSS
Exploits0References2
susecve
susecve
added 2023/02/15 3:52 a.m.3 views

SUSE CVE-2020-26957

OneCRL was non-functional in the new Firefox for Android due to a missing service initialization. This could result in a failure to enforce some certificate revocations. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox...

6.5CVSS8.4AI score0.00544EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 3:52 a.m.4 views

SUSE CVE-2020-26965

Some websites have a feature "Show Password" where clicking a button will change a password field into a textbook field, revealing the typed password. If, when using a software keyboard that remembers user input, a user typed their password and used that feature, the type of the password field wa...

6.5CVSS8.6AI score0.01236EPSS
Exploits0References15
osv
osv
added 2020/12/09 1:15 a.m.4 views

CVE-2020-26967

When listening for page changes with a Mutation Observer, a malicious web page could confuse Firefox Screenshots into interacting with elements other than those that it injected into the page. This would lead to internal errors and unexpected behavior in the Screenshots code. This vulnerability...

6.5CVSS7.1AI score0.00844EPSS
Exploits0References2
osv
osv
added 2020/12/09 1:15 a.m.5 views

UBUNTU-CVE-2020-26955

When a user downloaded a file in Firefox for Android, if a cookie is set, it would have been re-sent during a subsequent file download operation on the same domain, regardless of whether the original and subsequent request were in private and non-private browsing modes. Note: This issue only...

6.5CVSS6.8AI score0.0082EPSS
Exploits0References3
redhat
redhat
added 2020/11/30 7:50 p.m.4 views

Mozilla: Fullscreen could be enabled without displaying the security UI

It was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a phishing attack or otherwise confuse the user. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

4.3CVSS7.3AI score0.01267EPSS
Exploits0References5
redhat
redhat
added 2020/11/30 8:55 a.m.13 views

Mozilla: Fullscreen could be enabled without displaying the security UI

It was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a phishing attack or otherwise confuse the user. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

4.3CVSS7.3AI score0.01267EPSS
Exploits0References5
Rows per page
Query Builder