3796 matches found
CVE-2025-49192
CVE-2025-49192 is a clickjacking vulnerability affecting SICK Field Analytics and SICK Media Server, where the web UI can be embedded in a frame to mislead users and potentially expose confidential data or enable control gains. The issue is described across multiple sources (SICK PSIRT and relate...
Amazon Linux 2023 : firefox (ALAS2023-2025-996)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-996 advisory. An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability affects Firefox 138.0.4, Firefox ESR 128.10.1, and Firefox ESR 115.23.1...
SICK Field Analytics和SICK Media Server 安全漏洞
SICK Field Analytics and SICK Media Server are both products of the German company SICK.SICK Field Analytics is software for evaluating manufacturing data.SICK Media Server is a media server. A security vulnerability exists in SICK Field Analytics and SICK Media Server that stems from...
SICK Field Analytics和SICK Media Server 安全漏洞
SICK Field Analytics and SICK Media Server are both products of the German company SICK.SICK Field Analytics is software for evaluating manufacturing data.SICK Media Server is a media server. A security vulnerability exists in SICK Field Analytics and SICK Media Server that stems from a missing...
PT-2025-25318
Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description The web application is susceptible to clickjacking attacks, where it can be embedded into another frame. This allows an attacker to deceive a user into clicking on something different from wha...
PT-2025-25319 · Sick Ag · Sick Field Analytics +1
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The application fails to implement several security headers, which are crucial for increasing the overall security level of the web application. These headers help prevent Clickjacking attac...
Important: thunderbird
Issue Overview: An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability affects Firefox 138.0.4, Firefox ESR 128.10.1, and Firefox ESR 115.23.1. CVE-2025-4918 An attacker was able to perform an out-of-bounds read or write on a JavaScript...
Amazon Linux 2 : thunderbird (ALAS-2025-2873)
The version of thunderbird installed on the remote host is prior to 128.11.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2873 advisory. An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability...
Important: thunderbird
Issue Overview: An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability affects Firefox 138.0.4, Firefox ESR 128.10.1, and Firefox ESR 115.23.1. CVE-2025-4918 An attacker was able to perform an out-of-bounds read or write on a JavaScript...
Important: firefox
Issue Overview: An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability affects Firefox 138.0.4, Firefox ESR 128.10.1, and Firefox ESR 115.23.1. CVE-2025-4918 An attacker was able to perform an out-of-bounds read or write on a JavaScript...
Amazon Linux 2 : firefox (ALASFIREFOX-2025-039)
The version of firefox installed on the remote host is prior to 128.11.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2025-039 advisory. An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability...
firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A clickjacking vulnerability could be used to trick a user into leaking saved payment card details to a malicious page...
Important: thunderbird security update
Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header in Thunderbird CVE-2025-3875 thunderbird: Unsolicited File Download,...
ALSA-2025:8756 Important: thunderbird security update
Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header in Thunderbird CVE-2025-3875 thunderbird: Unsolicited File Download,...
Important: firefox
Issue Overview: An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability affects Firefox 138.0.4, Firefox ESR 128.10.1, and Firefox ESR 115.23.1. CVE-2025-4918 An attacker was able to perform an out-of-bounds read or write on a JavaScript...
firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A clickjacking vulnerability could be used to trick a user into leaking saved payment card details to a malicious page...
Important: Red Hat Security Advisory: thunderbird security update
An update for thunderbird is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A clickjacking vulnerability could be used to trick a user into leaking saved payment card details to a malicious page...
Important: Red Hat Security Advisory: thunderbird security update
An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A clickjacking vulnerability could be used to trick a user into leaking saved payment card details to a malicious page...