Lucene search
K

29 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/01 8:47 p.m.2 views

CVE-2025-36373

IBM DataPower Gateway 10.6CD 10.6.1.0 through 10.6.5.0 and IBM DataPower Gateway 10.5.0 10.5.0.0 through 10.5.0.20 and IBM DataPower Gateway 10.6.0 10.6.0.0 through 10.6.0.8 IBM DataPower Gateway could disclose sensitive system information from other domains to an administrative user...

4.1CVSS5.8AI score0.00252EPSS
Exploits0References2Affected Software3
OSV
OSV
added 2025/01/09 1:37 a.m.5 views

USN-7191-1 firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. CVE-2025-0237, CVE-2025-0239,...

9.8CVSS7AI score0.1307EPSS
Exploits0References9
OSV
OSV
added 2023/05/24 9:48 a.m.7 views

USN-6074-3 firefox regressions

USN-6074-1 fixed vulnerabilities and USN-6074-2 fixed minor regressions in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were...

6AI score
Exploits0References2
OSV
OSV
added 2023/01/23 6:29 a.m.10 views

USN-5816-1 firefox vulnerabilities

Niklas Baumstark discovered that a compromised web child process of Firefox could disable web security opening restrictions, leading to a new child process being spawned within the file:// context. An attacker could potentially exploits this to obtain sensitive information. CVE-2023-23597 Tom...

8.8CVSS7.1AI score0.00702EPSS
Exploits0References10
OSV
OSV
added 2022/11/10 12:10 p.m.5 views

USN-5709-2 firefox vulnerabilities

USN-5709-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted...

6AI score
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/04 5:48 p.m.21 views

Security Bulletin: IBM QRadar SIEM is vulnerable to Cross domain information disclosure (CVE-2020-4883)

Summary IBM QRadar SIEM is vulnerable to Cross domain information disclosure Vulnerability Details CVEID: CVE-2020-4883 DESCRIPTION: IBM QRadar SIEM could disclose sensitive information about other domains which could be used in further attacks against the system. CVSS Base score: 4.3 CVSS Tempor...

6.5CVSS1.1AI score0.00787EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2021/02/22 12:0 a.m.7 views

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2021-15498)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. An information disclosure vulnerability exists in Mozilla Firefox. The vulnerability stems from the fact that if a user clicks on a specially crafted PDF, it may obfuscate the leak of cross-domain...

4.3CVSS6AI score0.01047EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/01/03 12:0 a.m.51 views

Mozilla Thunderbird < 45.6 Multiple Vulnerabilities (macOS)

The version of Mozilla Thunderbird installed on the remote macOS or Mac OS X host is prior to 45.6. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exists, such as when handling document state changes or HTML5 content, or else due to dereferencing...

9.8CVSS8.1AI score0.21401EPSS
Exploits11References9
Tenable Nessus
Tenable Nessus
added 2016/12/15 12:0 a.m.35 views

Mozilla Firefox < 50.1 Multiple Vulnerabilities (macOS)

The version of Mozilla Firefox installed on the remote macOS or Mac OS X host is prior to 50.1. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exists when handling style contexts, regular expressions, and clamped gradients that allow an...

9.8CVSS7.4AI score0.21401EPSS
Exploits12References14
Tenable Nessus
Tenable Nessus
added 2016/12/15 12:0 a.m.61 views

Mozilla Firefox ESR 45.x < 45.6 Multiple Vulnerabilities

The version of Mozilla Firefox ESR installed on the remote Windows host is 45.x prior to 45.6. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exist, such as when handling document state changes or HTML5 content, or else due to dereferencing alrea...

9.8CVSS7.1AI score0.21401EPSS
Exploits12References11
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.34 views

RHEL 5 : flash-plugin (RHSA-2012:1203)

The remote Redhat Enterprise Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2012:1203 advisory. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes several...

10CVSS8AI score0.70384EPSS
Exploits13References15
Tenable Nessus
Tenable Nessus
added 2012/09/21 12:0 a.m.49 views

MS KB2755399: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10

The remote host is missing KB2755399. It may, therefore, be affected by the following vulnerabilities related to the installed version of the Adobe Flash ActiveX control : - An unspecified remote code execution error exists. CVE-2012-1535 - Multiple memory corruption errors exist that could lead ...

10CVSS8.7AI score0.70384EPSS
Exploits13References12
Tenable Nessus
Tenable Nessus
added 2012/08/22 12:0 a.m.35 views

Adobe AIR for Mac 3.x <= 3.3.0.3670 Multiple Vulnerabilities (APSB12-19)

According to its version, the instance of Adobe AIR on the remote Mac OS X host is 3.3.0.3670 or earlier and is, therefore, reportedly affected by multiple vulnerabilities : - Multiple memory corruption vulnerabilities could lead to code execution. CVE-2012-4163, CVE-2012-4164, CVE-2012-4165 - An...

10CVSS5.9AI score0.09233EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2012/02/03 12:0 a.m.25 views

Mozilla Products IPv6 Literal Syntax Cross Domain Information Disclosure Vulnerability (Windows)

The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsipv6literalsyntaxinfodiscvulnwin.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products IPv6 Literal Syntax Cross Domain Informatio...

5CVSS9.3AI score0.02161EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/02/03 12:0 a.m.34 views

Mozilla Products IPv6 Literal Syntax Cross Domain Information Disclosure Vulnerability (MAC OS X)

The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsipv6literalsyntaxinfodiscvulnmacosx.nasl 6445 2017-06-27 12:31:06Z santu $ Mozilla Products IPv6 Literal Syntax Cross Domain...

5CVSS9.3AI score0.02161EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/08/18 12:0 a.m.36 views

Mozilla Firefox 3.6 < 3.6.20 Multiple Vulnerabilities

Binary data 801343.prm...

10CVSS9.8AI score0.05556EPSS
Exploits5References10
Symantec
Symantec
added 2011/08/09 12:0 a.m.12 views

Microsoft Internet Explorer Event Handlers Cross Domain Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability. An attacker can exploit this issue to access local files or content from a browser window in another domain or security zone. This may allow the attacker to obtain sensitive information that m...

6.8AI score
Exploits0Affected Software6
CVE
CVE
added 2010/12/16 7:0 p.m.54 views

CVE-2010-3348

Microsoft Internet Explorer 6–8 is affected by a Cross‑Domain Information Disclosure vulnerability (CVE-2010-3348) where cached content could be rendered as HTML, allowing access to content from a different domain or zone via script. The issue stems from IE not preventing rendering of cached cont...

4.3CVSS6.3AI score0.13615EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2010/12/16 7:0 p.m.56 views

CVE-2010-3342

CVE-2010-3342 affects Microsoft Internet Explorer 6–8, where the browser may render cached HTML content that comes from a different domain/zone via script, enabling cross-domain information disclosure. The issue is documented alongside CVE-2010-3348 (another cross-domain disclosure) and is mitiga...

4.3CVSS6.3AI score0.13615EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2009/06/10 6:30 p.m.27 views

CVE-2009-1140

Microsoft Internet Explorer 5.01 SP4; 6 SP1; 6 and 7 for Windows XP SP2 and SP3; 6 and 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 does not prevent HTML rendering of cached content, which allows remote attackers to bypass the Same Origin Policy via unspecified...

7.1CVSS6.1AI score0.24762EPSS
Exploits2References5
Rows per page
Query Builder