Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.36 views

openSUSE Security Update : MozillaThunderbird (openSUSE-2019-772)

This update for MozillaThunderbird fixes the following issues : Thunderbird 63 ESR was updated to version 60.3.0 to fix the following issues bsc1112852 : Security issues fixed MFSA 2018-28 : - CVE-2018-12389: Fixed memory safety bugs. - CVE-2018-12390: Fixed memory safety bugs. - CVE-2018-12391:...

9.8CVSS8.2AI score0.03924EPSS
Exploits0References6
Cvelist
Cvelist
added 2019/02/28 6:0 p.m.17 views

CVE-2018-12391

During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across origins in violation of security policies. Because the problem is in the underlying Android service, this issue is addressed by treating all HLS streams as cross-origin and opaque to access. Note: this issu...

8.3AI score0.02093EPSS
Exploits0References8
CVE
CVE
added 2019/02/28 6:0 p.m.149 views

CVE-2018-12391

CVE-2018-12391 affects Firefox for Android: during HTTP Live Stream playback, audio data can be accessed across origins due to a flaw in the underlying Android service. The vulnerability is addressed by treating all HLS streams as cross-origin and opaque. Affected products/versions include Firefo...

9.3CVSS8.1AI score0.02093EPSS
Exploits0References8Affected Software3
Debian CVE
Debian CVE
added 2019/02/28 6:0 p.m.33 views

CVE-2018-12391

During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across origins in violation of security policies. Because the problem is in the underlying Android service, this issue is addressed by treating all HLS streams as cross-origin and opaque to access. Note: this issu...

9.3CVSS9.1AI score0.02093EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/11/08 12:0 a.m.39 views

openSUSE Security Update : MozillaThunderbird (openSUSE-2018-1340)

This update for MozillaThunderbird fixes the following issues : Thunderbird 63 ESR was updated to version 60.3.0 to fix the following issues bsc1112852 : Security issues fixed MFSA 2018-28 : - CVE-2018-12389: Fixed memory safety bugs. - CVE-2018-12390: Fixed memory safety bugs. - CVE-2018-12391:...

9.8CVSS8.2AI score0.03924EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2018/11/08 12:0 a.m.27 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2018:3646-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.6AI score0.03924EPSS
Exploits0References2
ALT Linux
ALT Linux
added 2018/11/02 12:0 a.m.21 views

Security fix for the ALT Linux 10 package thunderbird version 60.3.0-alt1

Nov. 2, 2018 Andrey Cherepanov 60.3.0-alt1 - New version 60.3.0. - Fixes: + CVE-2018-12391 HTTP Live Stream audio data is accessible cross-origin + CVE-2018-12392 Crash with nested event loops + CVE-2018-12393 Integer overflow during Unicode conversion while loading JavaScript + CVE-2018-12389...

9.3CVSS8AI score0.03924EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/11/01 12:0 a.m.50 views

Mozilla Thunderbird < 60.3

The version of Thunderbird installed on the remote Windows host is prior to 60.3. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2018-28 advisory. - When manipulating user events in nested loops while opening a document through script, it is possible to trigger a...

9.8CVSS8.7AI score0.03924EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/10/25 12:0 a.m.37 views

Mozilla Firefox < 63 Multiple Vulnerabilities (macOS)

The version of Mozilla Firefox installed on the remote macOS host is prior to 63. It is, therefore, affected by multiple vulnerabilities : - During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across origins in violation of security policies. Because the problem is...

9.8CVSS7.1AI score0.03924EPSS
Exploits0References55
Tenable Nessus
Tenable Nessus
added 2018/10/25 12:0 a.m.41 views

Mozilla Firefox ESR < 60.3 Multiple Vulnerabilities (macOS)

The version of Mozilla Firefox ESR installed on the remote macOS host is prior to 60.3. It is, therefore, affected by multiple vulnerabilities : - During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across origins in violation of security policies. Because the...

9.8CVSS7.2AI score0.03924EPSS
Exploits0References36
Tenable Nessus
Tenable Nessus
added 2018/10/24 12:0 a.m.43 views

FreeBSD : mozilla -- multiple vulnerabilities (7c3a02b9-3273-4426-a0ba-f90fad2ff72e)

Mozilla Foundation reports : CVE-2018-12391: HTTP Live Stream audio data is accessible cross-origin CVE-2018-12392: Crash with nested event loops CVE-2018-12393: Integer overflow during Unicode conversion while loading JavaScript CVE-2018-12395: WebExtension bypass of domain restrictions through...

9.8CVSS7.5AI score0.03924EPSS
Exploits0References17
Kaspersky
Kaspersky
added 2018/10/23 12:0 a.m.584 views

KLA11341 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR

Multiple serious vulnerabilities were found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, gain privileges, read local files, spoof user interface and execute arbitrary code. Below is a comple...

9.8CVSS9.6AI score0.03924EPSS
Exploits0References5
ALT Linux
ALT Linux
added 2018/10/23 12:0 a.m.114 views

Security fix for the ALT Linux 10 package firefox-esr version 60.3.0-alt1

Oct. 23, 2018 Andrey Cherepanov 60.3.0-alt1 - New ESR version 60.3.0. - Fixed: + CVE-2018-12391 HTTP Live Stream audio data is accessible cross-origin + CVE-2018-12392 Crash with nested event loops + CVE-2018-12393 Integer overflow during Unicode conversion while loading JavaScript + CVE-2018-123...

9.3CVSS8AI score0.03924EPSS
Exploits0
Rows per page
Query Builder