Lucene search
K

9 matches found

OSV
OSV
added 2020/03/25 10:15 p.m.2 views

DEBIAN-CVE-2020-6806

By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.6, Firefox 74, Firefox ESR68.6...

8.8CVSS8.7AI score0.02543EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/02/24 12:53 p.m.4 views

Mozilla: Message ID calculation was based on uninitialized data

When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird 68.5...

4.3CVSS7.3AI score0.01299EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/01/14 6:46 p.m.7 views

Mozilla: Type Confusion in XPCVariant.cpp

Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Firefox ESR 68.4 and Firefox 72...

8.8CVSS7.4AI score0.02489EPSS
Exploits0References5
OSV
OSV
added 2020/01/08 10:15 p.m.1 views

UBUNTU-CVE-2019-17024

Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR 68.4 and...

8.8CVSS7.4AI score0.02455EPSS
Exploits1References11
OSV
OSV
added 2020/01/08 9:15 p.m.4 views

DEBIAN-CVE-2019-11764

Mozilla developers and community members reported memory safety bugs present in Firefox 69 and Firefox ESR 68.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could be exploited to run arbitrary code. This vulnerability affects Firefo...

8.8CVSS8.9AI score0.0146EPSS
Exploits1References1
OSV
OSV
added 2019/09/04 12:0 a.m.5 views

UBUNTU-CVE-2019-11746

A use-after-free vulnerability can occur while manipulating video elements if the body is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Firefox 69, Thunderbird 68.1, Thunderbird 60.9, Firefox ESR 60.9, and Firefox ESR 68.1...

8.8CVSS7.3AI score0.01713EPSS
Exploits0References6
OSV
OSV
added 2019/07/11 12:0 a.m.4 views

UBUNTU-CVE-2019-11713

A use-after-free vulnerability can occur in HTTP/2 when a cached HTTP/2 stream is closed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

9.8CVSS7.3AI score0.02149EPSS
Exploits0References6
OSV
OSV
added 2019/07/11 12:0 a.m.2 views

UBUNTU-CVE-2019-11723

A vulnerability exists during the installation of add-ons where the initial fetch ignored the origin attributes of the browsing context. This could leak cookies in private browsing mode or across different "containers" for people who use the Firefox Multi-Account Containers Web Extension. This...

7.5CVSS7.3AI score0.00807EPSS
Exploits0References4
OSV
OSV
added 2019/07/11 12:0 a.m.1 views

UBUNTU-CVE-2019-11725

When a user navigates to site marked as unsafe by the Safebrowsing API, warning messages are displayed and navigation is interrupted but resources from the same site loaded through websockets are not blocked, leading to the loading of unsafe resources and bypassing safebrowsing protections. This...

6.5CVSS6.8AI score0.01147EPSS
Exploits0References4
Rows per page
Query Builder