Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-11716

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Until explicitly accessed by script, window.globalThis is not enumerable and, as a result, is not visible to code such as Object.getOwnPropertyNameswindow. Site...

8.3CVSS8.3AI score0.01354EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2019-0272)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.20271EPSS
Exploits3References7
RedhatCVE
RedhatCVE
added 2022/01/13 6:55 a.m.41 views

CVE-2019-11716

Until explicitly accessed by script, window.globalThis is not enumerable and, as a result, is not visible to code such as Object.getOwnPropertyNameswindow. Sites that deploy a sandboxing that depends on enumerating and freezing access to the window object may miss this, allowing their sandboxes t...

8.3CVSS2.2AI score0.01354EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.31 views

Mozilla Firefox Security Advisory (MFSA2019-21) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.8CVSS7.7AI score0.20271EPSS
Exploits4References27
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2019:2545-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.02574EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.30 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2019:2249-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.9AI score0.20271EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2019/10/04 12:0 a.m.37 views

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2019:2545-1)

This update for MozillaFirefox to 68.1 fixes the following issues : Security issues fixed : CVE-2019-9811: Fixed a sandbox escape via installation of malicious language pack. bsc1140868 CVE-2019-9812: Fixed a sandbox escape through Firefox Sync. bsc1149294 CVE-2019-11710: Fixed several memory...

9.8CVSS7.1AI score0.02574EPSS
Exploits5References80
OpenVAS
OpenVAS
added 2019/07/26 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-4054-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.20271EPSS
Exploits4References3
NVD
NVD
added 2019/07/23 2:15 p.m.16 views

CVE-2019-11716

Until explicitly accessed by script, window.globalThis is not enumerable and, as a result, is not visible to code such as Object.getOwnPropertyNameswindow. Sites that deploy a sandboxing that depends on enumerating and freezing access to the window object may miss this, allowing their sandboxes t...

8.3CVSS8.4AI score0.01354EPSS
Exploits0References7
CVE
CVE
added 2019/07/23 1:18 p.m.270 views

CVE-2019-11716

Mozilla Firefox contains a memory-safety sandbox issue described as: until explicitly accessed by script, window.globalThis is not enumerable, making it invisible to Object.getOwnPropertyNames(window) and potentially bypassable sandboxing. Affects Firefox versions prior to 68.0. The public docume...

8.3CVSS8.3AI score0.01354EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2019/07/23 1:18 p.m.39 views

CVE-2019-11716

Until explicitly accessed by script, window.globalThis is not enumerable and, as a result, is not visible to code such as Object.getOwnPropertyNameswindow. Sites that deploy a sandboxing that depends on enumerating and freezing access to the window object may miss this, allowing their sandboxes t...

8.3CVSS9.4AI score0.01354EPSS
Exploits0
Mageia
Mageia
added 2019/07/21 6:17 p.m.63 views

Updated firefox packages fix security vulnerability

Sandbox escape via installation of malicious language pack. CVE-2019-9811 Script injection within domain through inner window reuse. CVE-2019-11711 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects. CVE-2019-11712 Use-after-free with HTTP/2 cached stream...

9.8CVSS9.3AI score0.20271EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2019/07/13 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-4054-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.20271EPSS
Exploits4References2
Rows per page
Query Builder