CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3975 matches found

AlpineLinux•added 2023/09/11 8:0 a.m.•35 views

CVE-2023-4574

When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could have led to a use-after-free causing a potentially exploitable...

6.5CVSS7.5AI score0.00137EPSS

Exploits0

Vulnrichment•added 2023/09/11 8:0 a.m.•15 views

CVE-2023-4574

6.4AI score0.00137EPSS

Exploits0References6

CVE•added 2023/09/11 8:0 a.m.•223 views

CVE-2023-4574

CVE-2023-4574 involves a use-after-free in the IPC ColorPickerShownCallback: creating multiple identical callbacks for the Color Picker over IPC, then destroying them all when one finishes. Affected: Firefox < 117, Firefox ESR < 102.15/115.2, Thunderbird

6.5CVSS7AI score0.00137EPSS

Exploits0References6Affected Software3

Cvelist•added 2023/09/11 8:0 a.m.•25 views

CVE-2023-4574 Memory corruption in IPC ColorPickerShownCallback

7.3AI score0.00137EPSS

Exploits0References6

Debian CVE•added 2023/09/11 8:0 a.m.•21 views

CVE-2023-4574

6.5CVSS8.2AI score0.00137EPSS

Exploits0

OSV•added 2023/09/08 2:15 p.m.•1 views

CVE-2023-39676

FieldPopupNewsletter Prestashop Module v1.0.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the callback parameter at ajax.php...

6.1CVSS5.6AI score0.05261EPSS

Exploits1References3

ATTACKERKB•added 2023/09/08 2:15 p.m.•2 views

CVE-2023-39676

FieldPopupNewsletter Prestashop Module v1.0.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the callback parameter at ajax.php...

6.1CVSS5.6AI score0.05261EPSS

Exploits1References5

NVD•added 2023/09/08 2:15 p.m.•7 views

CVE-2023-39676

FieldPopupNewsletter Prestashop Module v1.0.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the callback parameter at ajax.php...

6.1CVSS6.1AI score0.05261EPSS

Exploits1References3

Cvelist•added 2023/09/08 12:0 a.m.•12 views

CVE-2023-39676

FieldPopupNewsletter Prestashop Module v1.0.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the callback parameter at ajax.php...

6.2AI score0.05261EPSS

Exploits1References3

RedHat Linux•added 2023/09/07 11:45 a.m.•2 views

Mozilla: Memory corruption in IPC ColorPickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

6.5CVSS7.2AI score0.00137EPSS

Exploits0References5

RedHat Linux•added 2023/09/07 11:45 a.m.•1 views

Mozilla: Memory corruption in IPC FilePickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

6.5CVSS7.2AI score0.00137EPSS

Exploits0References5

RedHat Linux•added 2023/09/04 4:4 p.m.•1 views

Mozilla: Memory corruption in IPC ColorPickerShownCallback

6.5CVSS7.2AI score0.00137EPSS

Exploits0References5

RedHat Linux•added 2023/09/04 4:3 p.m.•2 views

Mozilla: Memory corruption in IPC ColorPickerShownCallback

6.5CVSS7.2AI score0.00137EPSS

Exploits0References5

RedHat Linux•added 2023/09/04 4:0 p.m.•3 views

Mozilla: Memory corruption in IPC ColorPickerShownCallback