Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

46 matches found

AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.5 views

Astra Linux – Vulnerability in Firefox and Thunderbird

Documents loaded with the CSP sandbox directive could have escaped the sandbox’s script restrictions by embedding additional content. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.1CVSS6.5AI score0.01352EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2021-30472

Malicious code in bioql PyPI...

6.1CVSS7.9AI score0.01352EPSS
Exploits0References25
Tenable Nessus
Tenable Nessusadded 2024/10/09 12:0 a.m.20 views

CentOS 7 : thunderbird (RHSA-2021:5046)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:5046 advisory. - Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported...

9.8CVSS7.9AI score0.0202EPSS
Exploits1References12
Tenable Nessus
Tenable Nessusadded 2024/10/09 12:0 a.m.26 views

CentOS 7 : firefox (RHSA-2021:5014)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:5014 advisory. - Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported...

9.8CVSS7.8AI score0.0202EPSS
Exploits1References11
Tenable Nessus
Tenable Nessusadded 2023/11/06 12:0 a.m.19 views

Rocky Linux 8 : thunderbird (RLSA-2021:5045)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:5045 advisory. - Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported...

9.8CVSS7.9AI score0.0202EPSS
Exploits1References23
OpenVAS
OpenVASadded 2022/07/07 12:0 a.m.26 views

Mozilla Firefox Security Advisory (MFSA2022-24) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

9.8CVSS7.7AI score0.24122EPSS
Exploits1References1
OSV
OSVadded 2022/07/05 7:11 p.m.5 views

MGASA-2022-0253 Updated thunderbird packages fix security vulnerability

A popup window could be resized in a way to overlay the address bar with web content. CVE-2022-34479 Use-after-free in nsSHistory. CVE-2022-34470 CSP sandbox header without allow-scripts can be bypassed via retargeted javascript: URI. CVE-2022-34468 An email with a mismatching OpenPGP signature...

9.8CVSS8.1AI score0.24122EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2022/07/01 1:32 a.m.3 views

Mozilla: CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI

The Mozilla Foundation Security Advisory describes this flaw as: An iframe that was not permitted to run scripts could do so if the user clicked on a javascript: link...

8.8CVSS7.3AI score0.00945EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2022/07/01 12:27 a.m.1 views

Mozilla: CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI

The Mozilla Foundation Security Advisory describes this flaw as: An iframe that was not permitted to run scripts could do so if the user clicked on a javascript: link...

8.8CVSS7.3AI score0.00945EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2022/07/01 12:0 a.m.55 views

RHEL 8 : firefox (RHSA-2022:5474)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:5474 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS7.7AI score0.24122EPSS
Exploits1References18
RedHat Linux
RedHat Linuxadded 2022/06/30 10:1 p.m.4 views

Mozilla: CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI

The Mozilla Foundation Security Advisory describes this flaw as: An iframe that was not permitted to run scripts could do so if the user clicked on a javascript: link...

8.8CVSS7.3AI score0.00945EPSS
Exploits0References6
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2021-0554)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.0202EPSS
Exploits1References6
OpenVAS
OpenVASadded 2022/01/11 12:0 a.m.26 views

CentOS: Security Advisory for firefox (CESA-2021:5014)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.2AI score0.0202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2021/12/17 12:0 a.m.57 views

openSUSE 15 Security Update : MozillaFirefox (openSUSE-SU-2021:1575-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1575-1 advisory. - Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL. This vulnerability...

8.8CVSS7.4AI score0.0202EPSS
Exploits0References21
CNVD
CNVDadded 2021/12/13 12:0 a.m.29 views

Mozilla Firefox Cross-Site Scripting Vulnerability (CNVD-2021-99615)

Mozilla Firefox is an open source Web browser from the Mozilla Foundation in the U.S. A cross-site scripting vulnerability exists in Mozilla Firefox, which can be exploited by attackers to use the CSP sandbox command, where loaded documents can escape the scripting restrictions of the sandbox by...

6.1CVSS3.4AI score0.01352EPSS
Exploits0References1
OpenVAS
OpenVASadded 2021/12/12 12:0 a.m.16 views

Mozilla Thunderbird Security Advisories (MFSA2021-50, MFSA2021-54) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

8.8CVSS8AI score0.0202EPSS
Exploits0References1
OpenVAS
OpenVASadded 2021/12/12 12:0 a.m.23 views

Mozilla Thunderbird Security Advisories (MFSA2021-50, MFSA2021-54) - Windows

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

8.8CVSS8AI score0.0202EPSS
Exploits0References1
OpenVAS
OpenVASadded 2021/12/12 12:0 a.m.29 views

Mozilla Firefox ESR Security Advisory (MFSA2021-53) - Mac OS X

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

8.8CVSS6.8AI score0.0202EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2021/12/11 12:0 a.m.53 views

SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2021:14859-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14859-1 advisory. - Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL. This vulnerability...

8.8CVSS7.4AI score0.0202EPSS
Exploits0References21
Tenable Nessus
Tenable Nessusadded 2021/12/10 12:0 a.m.38 views

CentOS 8 : thunderbird (CESA-2021:5045)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:5045 advisory. - Mozilla: JavaScript unexpectedly enabled for the composition area CVE-2021-43528 - Mozilla: URL leakage when navigating while executing asynchronous...

8.8CVSS7.7AI score0.0202EPSS
Exploits0References11
Rows per page
Query Builder