Lucene search
K

57 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : firefox-68.5.0-2.0.1.el7.AXS7 (AXSA:2020-4469:04)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-4469:04 advisory. Mozilla: Missing bounds check on shared memory read in the parent process CVE-2020-6796 Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox...

8.8CVSS8.4AI score0.02274EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.23 views

Ubuntu 16.04 LTS : Firefox vulnerabilities (USN-4278-2)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4278-2 advisory. USN-4278-1 fixed vulnerabilities in Firefox. This update provides the corresponding update for Ubuntu 16.04 LTS. Tenable has extracted the preceding...

8.8CVSS7.8AI score0.02274EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.36 views

Oracle Linux 8 : thunderbird (ELSA-2020-0577)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0577 advisory. 68.5.0-1.0.1.el81 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.5.0-1 - Update to 68.5.0 build1 Tenable ha...

8.8CVSS7.4AI score0.02274EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.24 views

Oracle Linux 6 : firefox (ELSA-2020-0521)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0521 advisory. - Added fix for mozbz1348168/CVE-2017-5428 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

9.8CVSS7.9AI score0.03158EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.22 views

Slackware: Security Advisory (SSA:2020-042-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.02274EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2020-0091)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.02274EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2020-0090)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.02274EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2020:0383-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.02274EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2020:14290-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.02274EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2020:0384-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.02274EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/05/27 12:0 a.m.35 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2020-0026)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has firefox packages installed that are affected by multiple vulnerabilities: - A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This...

8.8CVSS7.9AI score0.02274EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/23 1:48 p.m.42 views

Security Bulletin: Multiple vulnerabilities in Mozilla Firefox affect IBM Cloud App Management

Summary There are multiple vulnerabilities in Mozilla Firefox used by IBM® Cloud App Management. IBM Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2020-6796 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrar...

8.8CVSS2.2AI score0.02274EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2020/04/22 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-4335-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.46589EPSS
Exploits18References4
Tenable Nessus
Tenable Nessus
added 2020/04/14 12:0 a.m.54 views

Ubuntu 18.04 LTS : Thunderbird vulnerabilities (USN-4328-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4328-1 advisory. It was discovered that Message ID calculation was based on uninitialized data. An attacker could potentially exploit this to obtain sensitive information...

9.8CVSS7.6AI score0.06305EPSS
Exploits4References19
OpenVAS
OpenVAS
added 2020/04/14 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-4328-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.06305EPSS
Exploits4References4
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/01 10:50 a.m.27 views

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.5.0 ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF10 + ICAM 3.0 - 4.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-6796, CVE-2020-6800, CVE-2020-6798 Vulnerability Details CVEID: CVE-2020-6796 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write...

8.8CVSS2.9AI score0.02274EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/03/26 12:0 a.m.235 views

Amazon Linux 2 : thunderbird (ALAS-2020-1408)

The version of thunderbird installed on the remote host is prior to 68.5.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1408 advisory. When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents...

8.8CVSS7.6AI score0.02274EPSS
Exploits1References13
CVE
CVE
added 2020/03/02 4:5 a.m.350 views

CVE-2020-6798

CVE-2020-6798 involves incorrect parsing when a template tag is used inside a select tag, enabling JavaScript injection under browser-like contexts. The vulnerability affects Thunderbird versions prior to 68.5 (and Firefox before 73 / ESR 68.5); exploitation is discussed in the context of cross-s...

6.1CVSS6.6AI score0.02056EPSS
Exploits0References9Affected Software3
Debian CVE
Debian CVE
added 2020/03/02 4:5 a.m.44 views

CVE-2020-6798

If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be...

6.1CVSS8AI score0.02056EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/02/27 12:0 a.m.36 views

CentOS 6 : thunderbird (RHSA-2020:0574)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:0574 advisory. - When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects...

8.8CVSS7.6AI score0.02274EPSS
Exploits1References7
Rows per page
Query Builder