Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/06/25 11:23 p.m.8 views

CVE-2026-12208

A flaw was found in the jsonata JavaScript library. A prototype pollution vulnerability exists in the createFrame function in src/jsonata.js, allowing a remote attacker to manipulate object prototype attributes. This could lead to unauthorized modification of application behavior. Mitigation Do n...

6.9CVSS5.9AI score0.00314EPSS
Exploits0References8
NVD
NVD
added 2026/06/15 3:16 a.m.15 views

CVE-2026-12208

A weakness has been identified in jsonata-js jsonata up to 2.2.0. The affected element is the function createFrame of the file src/jsonata.js of the component Function Binding Frame System. This manipulation causes improperly controlled modification of object prototype attributes. It is possible ...

6.9CVSS0.00314EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/06/15 2:0 a.m.7 views

CVE-2026-12208 jsonata-js jsonata Function Binding Frame System jsonata.js createFrame prototype pollution

A weakness has been identified in jsonata-js jsonata up to 2.2.0. The affected element is the function createFrame of the file src/jsonata.js of the component Function Binding Frame System. This manipulation causes improperly controlled modification of object prototype attributes. It is possible ...

6.9CVSS5.5AI score0.00314EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/15 2:0 a.m.11 views

EUVD-2026-36682

A weakness has been identified in jsonata-js jsonata up to 2.2.0. The affected element is the function createFrame of the file src/jsonata.js of the component Function Binding Frame System. This manipulation causes improperly controlled modification of object prototype attributes. It is possible ...

6.9CVSS5.5AI score0.00314EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/15 2:0 a.m.32 views

CVE-2026-12208 jsonata-js jsonata Function Binding Frame System jsonata.js createFrame prototype pollution

A weakness has been identified in jsonata-js jsonata up to 2.2.0. The affected element is the function createFrame of the file src/jsonata.js of the component Function Binding Frame System. This manipulation causes improperly controlled modification of object prototype attributes. It is possible ...

6.9CVSS0.00314EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.4 views

SUSE CVE-2016-1971

The I420VideoFrame::CreateFrame function in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows omits an unspecified status check, which might allow remote attackers to cause a denial of service memory corruption or possibly have other impact via unknown vectors...

8.8CVSS7.2AI score0.0172EPSS
Exploits0References13
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.7 views

The vulnerability of the Firefox browser, which allows a perpetrator to exert other effects or cause service failures

The vulnerability of the I420VideoFrame::CreateFrame function in the Firefox WebRTC browser implementation is caused by buffer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failures or other effects such as memory corruption...

6.8CVSS8.1AI score0.0172EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2016/03/13 6:59 p.m.1 views

CVE-2016-1971

The I420VideoFrame::CreateFrame function in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows omits an unspecified status check, which might allow remote attackers to cause a denial of service memory corruption or possibly have other impact via unknown vectors...

8.8CVSS7.4AI score0.0172EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/03/13 6:59 p.m.20 views

CVE-2016-1971

The I420VideoFrame::CreateFrame function in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows omits an unspecified status check, which might allow remote attackers to cause a denial of service memory corruption or possibly have other impact via unknown vectors...

8.8CVSS7.2AI score0.0172EPSS
Exploits0References2
CVE
CVE
added 2016/03/13 6:0 p.m.71 views

CVE-2016-1971

CVE-2016-1971 affects Mozilla Firefox before 45.0 on Windows, via the I420VideoFrame::CreateFrame function in WebRTC, where an unspecified status check is omitted. This can lead to memory corruption and a possible denial of service or other impacts. Public-lesson coverage in connected documents i...

8.8CVSS9.1AI score0.0172EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2016/03/13 6:0 p.m.24 views

CVE-2016-1971

The I420VideoFrame::CreateFrame function in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows omits an unspecified status check, which might allow remote attackers to cause a denial of service memory corruption or possibly have other impact via unknown vectors...

9.2AI score0.0172EPSS
Exploits0References7
CNVD
CNVD
added 2016/03/13 12:0 a.m.2 views

Mozilla Firefox Denial of Service Vulnerability (CNVD-2016-01653)

Firefox is an open source web browser. A denial of service vulnerability in the Mozilla Firefox I420VideoFrame::CreateFrame function allows remote attackers to exploit the vulnerability to construct a malicious WEB page that can be tricked into being parsed by the user, which can crash the...

8.8CVSS8.5AI score0.0172EPSS
Exploits0References1
NVD
NVD
added 2015/12/06 1:59 a.m.17 views

CVE-2015-8480

The VideoFramePool::PoolImpl::CreateFrame function in media/base/videoframepool.cc in Google Chrome before 47.0.2526.73 does not initialize memory for a video-frame data structure, which might allow remote attackers to cause a denial of service out-of-bounds memory access or possibly have...

10CVSS7.1AI score0.01349EPSS
Exploits0References2
Prion
Prion
added 2015/12/06 1:59 a.m.17 views

Out-of-bounds

The VideoFramePool::PoolImpl::CreateFrame function in media/base/videoframepool.cc in Google Chrome before 47.0.2526.73 does not initialize memory for a video-frame data structure, which might allow remote attackers to cause a denial of service out-of-bounds memory access or possibly have...

10CVSS7.8AI score0.01349EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder