Lucene search
+L

83 matches found

NVD
NVD
added 2024/01/23 2:15 p.m.18 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS5.6AI score0.00368EPSS
Exploits0References2
OSV
OSV
added 2024/01/23 2:15 p.m.3 views

UBUNTU-CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS7.4AI score0.00368EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/01/23 1:48 p.m.29 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

5.8AI score0.00368EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/01/23 12:0 a.m.27 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

4.3CVSS6.4AI score0.00368EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/10/04 1:15 p.m.5 views

Mozilla: Out-of-bounds write in PathOps

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data in a PathRecording, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

6.5CVSS7.1AI score0.01EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/04 11:59 a.m.6 views

Mozilla: Out-of-bounds write in PathOps

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data in a PathRecording, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

6.5CVSS7.1AI score0.01EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/04 11:32 a.m.12 views

Mozilla: Out-of-bounds write in PathOps

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data in a PathRecording, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

6.5CVSS7.1AI score0.01EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/09/28 12:0 a.m.22 views

CVE-2023-5169

A compromised content process could have provided malicious data in a PathRecording resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. This vulnerability affects Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3...

6.5CVSS6.7AI score0.01EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2023/09/28 12:0 a.m.37 views

CVE-2023-5170

In canvas rendering, a compromised content process could have caused a surface to change unexpectedly, leading to a memory leak of a privileged process. This memory leak could be used to effect a sandbox escape if the correct data was leaked. This vulnerability affects Firefox 118...

7.4CVSS6.8AI score0.00594EPSS
Exploits0References5
NVD
NVD
added 2023/09/27 3:19 p.m.18 views

CVE-2023-5169

A compromised content process could have provided malicious data in a PathRecording resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. This vulnerability affects Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3...

6.5CVSS7.2AI score0.01EPSS
Exploits0References9
Cvelist
Cvelist
added 2023/09/27 2:13 p.m.27 views

CVE-2023-5169

A compromised content process could have provided malicious data in a PathRecording resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. This vulnerability affects Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3...

7.5AI score0.01EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2023/09/27 2:12 p.m.28 views

CVE-2023-5168

A compromised content process could have provided malicious data to FilterNodeD2D1 resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. This bug only affects Firefox on Windows. Other operating systems are unaffected. This vulnerability affects...

9.8CVSS8.7AI score0.00921EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2023/09/27 6:54 a.m.31 views

CVE-2023-5168

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: A compromised content process could have provided malicious data to FilterNodeD2D1, resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process...

9.8CVSS8.7AI score0.00921EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/09/27 2:3 a.m.2 views

SUSE CVE-2023-5169

A compromised content process could have provided malicious data in a PathRecording resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. This vulnerability affects Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3...

6.5CVSS6.5AI score0.01EPSS
Exploits0References8
NVD
NVD
added 2022/12/22 8:15 p.m.22 views

CVE-2022-28281

If a compromised content process sent an unexpected number of WebAuthN Extensions in a Register command to the parent process, an out of bounds write would have occurred leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 91.8, Firefox 99, and...

8.8CVSS0.02556EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.26 views

CVE-2022-46872

An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages.This bug only affects Thunderbird for Linux. Other operating systems are unaffected.. This vulnerability affects Firefox 108, Firefox ESR 102.6, and...

8.6CVSS8.8AI score0.00772EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/12/19 12:0 a.m.28 views

RHEL 8 : thunderbird (RHSA-2022:9074)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:9074 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.6.0. Security Fixes: Mozilla:...

9.8CVSS8AI score0.00921EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2022/12/16 12:0 a.m.28 views

RHEL 8 : firefox (RHSA-2022:9068)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:9068 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS8AI score0.00921EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2022/12/16 12:0 a.m.29 views

RHEL 9 : firefox (RHSA-2022:9066)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:9066 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS8AI score0.00921EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2022/12/15 4:30 p.m.4 views

Mozilla: Arbitrary file read from a compromised content process

The Mozilla Foundation Security Advisory describes this flaw as: An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages. This bug only affects Firefox for Linux. Other operating systems are unaffected...

8.6CVSS7.5AI score0.00772EPSS
Exploits0References6
Rows per page
Query Builder