Lucene search
K

596 matches found

Debian CVE
Debian CVE
added 2026/03/10 3:3 p.m.6 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.3AI score0.00112EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/03/10 3:3 p.m.3 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/10 3:3 p.m.2 views

CVE-2026-3846 Same-origin policy bypass in the CSS Parsing and Computation component

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

5.8AI score0.00112EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/10 3:3 p.m.3 views

CVE-2026-3846

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox 148.0.2...

5.8AI score0.00112EPSS
Exploits0References3
CVE
CVE
added 2026/03/10 3:3 p.m.27 views

CVE-2026-3846

CVE-2026-3846: A same-origin policy bypass in Firefox’s CSS Parsing and Computation component. Affected: Mozilla Firefox before 148.0.2. Root cause: bypass in CSS parsing/calculation logic. Impact: potential security restriction bypass (I: High per CVSS data). Status: fixed in Firefox 148.0.2; re...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/10 3:3 p.m.33 views

CVE-2026-3846 Same-origin policy bypass in the CSS Parsing and Computation component

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 148.0.2...

0.00112EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2026/03/10 12:0 a.m.3 views

Firefox -- Same-origin policy bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2018400 reports: Same-origin policy bypass in the CSS Parsing and Computation component...

6.5CVSS5.8AI score0.00112EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.3 views

PT-2026-24212

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 148.0.2 Description A bypass of the same-origin policy exists in the CSS Parsing and Computation component. This allows potentially malicious actors to circumvent security restrictions designed to isolate web pages fr...

8.8CVSS5.8AI score0.00308EPSS
Exploits0References9
OSV
OSV
added 2026/02/23 8:28 p.m.4 views

UBUNTU-CVE-2025-61147

strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault via the component decodercontext::computeframedroptable...

6.2CVSS5.8AI score0.00159EPSS
Exploits1References3
OSV
OSV
added 2026/02/18 4:16 a.m.6 views

AZL-78009 CVE-2026-27171 affecting package gpsbabel 1.8.0-4

zlib before 1.3.2 allows CPU consumption via crc32combine64 and crc32combinegen64 because x2nmodp can do right shifts within a loop that has no termination condition...

5.5CVSS5.7AI score0.00204EPSS
Exploits1References1
Redos
Redos
added 2026/02/05 12:0 a.m.4 views

ROS-20260205-73-0021

A vulnerability in the legitimizemnt function of the fs/namespace.c component of the Linux operating system kernel is related to incorrect computation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.1AI score0.0013EPSS
Exploits0
Redos
Redos
added 2026/02/02 12:0 a.m.4 views

ROS-20260202-73-0037

A vulnerability in the Linux operating system kernel is related to incorrect computation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS5.5AI score0.00263EPSS
Exploits0
Redos
Redos
added 2026/01/19 12:0 a.m.5 views

ROS-20260119-7396

A vulnerability in the nftablesapi.c component of the Linux operating system kernel is related to incorrect computation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.8AI score0.00176EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/01/15 6:17 p.m.10 views

RustCrypto Utilities cmov: `thumbv6m-none-eabi` compiler emits non-constant time assembly when using `cmovnz`

Summary thumbv6m-none-eabi Cortex M0, M0+ and M1 compiler emits non-constant time assembly when using cmovnz portable version. I did not found any other target with the same behaviour but I did not go through all targets supported by Rust. Details It seems that, during mask computation, an LLVM...

9.8CVSS6.9AI score0.00498EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/01/15 6:17 p.m.3 views

GHSA-2GQC-6J2Q-83QP RustCrypto Utilities cmov: `thumbv6m-none-eabi` compiler emits non-constant time assembly when using `cmovnz`

Summary thumbv6m-none-eabi Cortex M0, M0+ and M1 compiler emits non-constant time assembly when using cmovnz portable version. I did not found any other target with the same behaviour but I did not go through all targets supported by Rust. Details It seems that, during mask computation, an LLVM...

8.9CVSS6.8AI score0.00498EPSS
Exploits1References5
Packet Storm News
Packet Storm News
added 2026/01/12 12:0 a.m.3 views

Memory-Based Malware Detection under Limited Data Conditions: A Comparative Evaluation of TabPFN and Ensemble Models

Artificial intelligence and machine learning have significantly advanced malware research by enabling automated threat detection and behavior analysis. However, the availability of exploitable data is limited, due to the absence of large datasets with real-world data. Despite the progress of AI i...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/07 9:11 a.m.24 views

CVE-2025-1673

A malicious or malformed DNS packet without a payload can cause an out-of-bounds read, resulting in a crash denial of service or an incorrect computation...

8.2CVSS6.8AI score0.00323EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-27390

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 149 Firefox ESR versions prior to 115.34 Firefox ESR versions prior to 140.9 Thunderbird versions prior to 149 Thunderbird versions prior to 140.9 Description A use-after-free issue exists in the CSS Parsing and...

10CVSS5.8AI score0.00483EPSS
Exploits0References261
NVD
NVD
added 2025/12/30 1:16 p.m.5 views

CVE-2022-50865

In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in struct sock is int, and in tcpaddbacklog, the variable limit is caculated by adding skrcvbuf, sksndbuf and 64 1024, it may exceed the ma...

0.00168EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/17 8:7 a.m.6 views

CVE-2023-29144

Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows a bypass of detection...

3.3CVSS6.9AI score0.00182EPSS
Exploits0References1
Rows per page
Query Builder