Lucene search
K

171 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Firefox and Thunderbird

Cross-Site Tracing occurs when a server echoes a request back using the Trace method, allowing an XSS attack to access authorization headers and cookies that are inaccessible to JavaScript such as cookies protected by HTTPOnly. To mitigate this attack, browsers imposed restrictions on fetch and...

6.1CVSS6.9AI score0.00575EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2026/02/02 12:11 p.m.9 views

USN-7991-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass security restrictions, cross-site tracing,...

9.8CVSS8.6AI score0.09348EPSS
Exploits2
OSV
OSV
added 2026/02/02 12:11 p.m.10 views

USN-7991-1 thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass security restrictions, cross-site tracing,...

9.8CVSS7.2AI score0.09348EPSS
Exploits2References112
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.10 views

PT-2026-6540

Name of the Vulnerable Software and Affected Versions Thunderbird versions 1:140.7.1+build1-0ubuntu0.22.04.1 Description Thunderbird is affected by multiple security issues. An attacker could potentially exploit these issues to cause a denial of service, obtain sensitive information, bypass...

9.8CVSS7.6AI score0.09348EPSS
Exploits2References113
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : thunderbird-102.5.0-2.el9.ML.1 (AXSA:2023-5045:06)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5045:06 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...

9.8CVSS8.2AI score0.01061EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : thunderbird-102.5.0-2.el8.ML.1 (AXSA:2023-4654:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-4654:01 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...

9.8CVSS8.5AI score0.01061EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : firefox-102.5.0-1.el8.ML.1 (AXSA:2023-4657:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-4657:01 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...

9.8CVSS5.8AI score0.01061EPSS
Exploits0References14
RedhatCVE
RedhatCVE
added 2026/01/09 11:43 a.m.18 views

CVE-2010-0386

The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing XST attack, a related issue to CVE-2004-2763 and CVE-2005-3398...

5.8CVSS7AI score0.13108EPSS
Exploits3References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-2217

Malware in sbrugna...

4.3CVSS6.4AI score0.01344EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-3000

Malware in sbrugna...

4.3CVSS6.2AI score0.01454EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-0417

Malware in sbrugna...

4.3CVSS6.1AI score0.01692EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0561

Malware in sbrugna...

5.9CVSS6AI score0.02781EPSS
Exploits0References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-2312

Malware in sbrugna...

5.8CVSS6.1AI score0.02561EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-14357

Malware in sbrugna...

6.1CVSS6.3AI score0.01337EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-2753

Malware in sbrugna...

5.8CVSS6.1AI score0.02178EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-7209

Malware in sbrugna...

4.3CVSS6.3AI score0.02093EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-48283

Malicious code in bioql PyPI...

6.1CVSS7.9AI score0.00575EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-11039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Spring Framework versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18, and older unsupported versions allow web applications to change the HTTP request...

5.9CVSS6.2AI score0.02781EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-45411

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization headers and cookies...

6.1CVSS7.6AI score0.00575EPSS
Exploits0References2
OSV
OSV
added 2025/07/22 11:55 a.m.12 views

USN-7663-1 thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass security restrictions, cross-site tracing,...

9.8CVSS7.1AI score0.1307EPSS
Exploits3References53
Rows per page
Query Builder