Lucene search
+L

39 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/21 12:0 a.m.24 views

Ubuntu 16.04 LTS / 18.04 LTS : Thunderbird vulnerabilities (USN-4150-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4150-1 advisory. It was discovered that encrypted S/MIME parts in a multipart message can leak plaintext contents when included in a HTML reply or forward in...

9.3CVSS7.1AI score0.0216EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-4122-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.0216EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-4150-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.1AI score0.0216EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2019-0285)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.6AI score0.0216EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2019-0275)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.1AI score0.0216EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2019-0267)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.6AI score0.0216EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.23 views

Mozilla Firefox Security Advisory (MFSA2019-25) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.8CVSS7.1AI score0.0216EPSS
Exploits3References23
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.195 views

NewStart CGSL MAIN 4.06 : firefox Multiple Vulnerabilities (NS-SA-2021-0004)

The remote NewStart CGSL host, running version MAIN 4.06, has firefox packages installed that are affected by multiple vulnerabilities: - When removing data about an origin whose tab was recently closed, a use-after-free could occur in the Quota manager, resulting in a potentially exploitable...

10CVSS8.7AI score0.43422EPSS
Exploits29References66
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.120 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0231)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has thunderbird packages installed that are affected by multiple vulnerabilities: - Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This vulnerabilit...

9.3CVSS7.3AI score0.0216EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2019/10/04 12:0 a.m.37 views

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2019:2545-1)

This update for MozillaFirefox to 68.1 fixes the following issues : Security issues fixed : CVE-2019-9811: Fixed a sandbox escape via installation of malicious language pack. bsc1140868 CVE-2019-9812: Fixed a sandbox escape through Firefox Sync. bsc1149294 CVE-2019-11710: Fixed several memory...

9.8CVSS7.1AI score0.02574EPSS
Exploits5References80
OSV
OSV
added 2019/09/27 6:15 p.m.8 views

CVE-2019-11742

A same-origin policy violation occurs allowing the theft of cross-origin images through a combination of SVG filters and a canvas element due to an error in how same-origin policy is applied to cached image content. The resulting same-origin policy violation could allow for data theft. This...

6.5CVSS8.2AI score
Exploits0References12
CVE
CVE
added 2019/09/27 5:18 p.m.318 views

CVE-2019-11742

CVE-2019-11742 describes a same-origin policy violation enabling theft of cross-origin images via a combination of SVG filters and a element, due to an error in how cached image content is treated. Affected: Firefox versions before 69, Thunderbird before 68.1 (and before 60.9 for ESR branches), ...

6.5CVSS6.9AI score0.01692EPSS
Exploits0References12Affected Software3
AlpineLinux
AlpineLinux
added 2019/09/27 5:18 p.m.34 views

CVE-2019-11742

A same-origin policy violation occurs allowing the theft of cross-origin images through a combination of SVG filters and a canvas element due to an error in how same-origin policy is applied to cached image content. The resulting same-origin policy violation could allow for data theft. This...

6.5CVSS7.3AI score0.01692EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/09/24 12:0 a.m.48 views

SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2019:2436-1)

This update for MozillaFirefox to ESR 60.9 fixes the following issues : Security issues fixed : CVE-2019-11742: Fixed a same-origin policy violation involving SVG filters and canvas to steal cross-origin images. bsc1149303 CVE-2019-11746: Fixed a use-after-free while manipulating video. bsc114929...

9.3CVSS7AI score0.0216EPSS
Exploits1References26
Tenable Nessus
Tenable Nessus
added 2019/09/20 12:0 a.m.33 views

Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20190919)

This update upgrades Thunderbird to version 60.9.0. Security Fixes : - Mozilla: Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message CVE-2019-11739 - Mozilla: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9 CVE-2019-11740 - Mozill...

9.3CVSS7.1AI score0.0216EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2019/09/20 12:0 a.m.32 views

CentOS Update for thunderbird CESA-2019:2773 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.0216EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/09/19 12:0 a.m.230 views

CentOS 7 : thunderbird (CESA-2019:2773)

An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

9.3CVSS7.2AI score0.0216EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2019/09/19 12:0 a.m.263 views

Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20190918)

This update upgrades Thunderbird to version 60.9.0. Security Fixes : - Mozilla: Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message CVE-2019-11739 - Mozilla: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9 CVE-2019-11740 - Mozill...

9.3CVSS7.1AI score0.0216EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2019/09/19 12:0 a.m.57 views

CentOS Update for firefox CESA-2019:2729 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.0216EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/09/19 12:0 a.m.128 views

Debian: Security Advisory (DLA-1926-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.0216EPSS
Exploits1References3
Rows per page
Query Builder