Lucene search
K

40 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : firefox-78.7.0-2.0.1.el7.AXS7 (AXSA:2021-1373:04)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1373:04 advisory. Mozilla: Cross-origin information leakage via redirected PDF requests CVE-2021-23953 Mozilla: Type confusion when using logical assignment operators...

8.8CVSS8.4AI score0.01556EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-23960

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Performing garbage collection on re-declared JavaScript variables resulted in a user-after-poison, and a potentially exploitable crash. This vulnerability affec...

8.8CVSS8.2AI score0.01196EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.15 views

Photon OS 4.0: Mozjs PHSA-2023-4.0-0469

An update of the mozjs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0469. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS9.7AI score0.01386EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.47 views

NewStart CGSL MAIN 6.02 : thunderbird Multiple Vulnerabilities (NS-SA-2021-0119)

The remote NewStart CGSL host, running version MAIN 6.02, has thunderbird packages installed that are affected by multiple vulnerabilities: - Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to obtain potentially sensitive information from process memory vi...

8.8CVSS8.4AI score0.01876EPSS
Exploits1References45
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2021:0259-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.01556EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2021:14609-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.01556EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:0241-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.01556EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2021:0246-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.01556EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.26 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2021:0208-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.4AI score0.01556EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.21 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2021:0223-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.4AI score0.01556EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.25 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2021:0209-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.4AI score0.01556EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.20 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2021:0222-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.4AI score0.01556EPSS
Exploits0References2
OSV
OSV
added 2021/02/26 3:15 a.m.8 views

CVE-2021-23960

Performing garbage collection on re-declared JavaScript variables resulted in a user-after-poison, and a potentially exploitable crash. This vulnerability affects Firefox 85, Thunderbird 78.7, and Firefox ESR 78.7...

8.8CVSS8.2AI score
Exploits0References4
CVE
CVE
added 2021/02/26 2:5 a.m.297 views

CVE-2021-23960

CVE-2021-23960 is corroborated by connected documents: a memory-safety issue in Firefox/Thunderbird where garbage collection on re-declared JavaScript variables can cause a use-after-poison and potentially crash the process. Affected versions are Firefox < 85, Thunderbird < 78.7, and Firefo...

8.8CVSS8.2AI score0.01196EPSS
Exploits0References4Affected Software3
OpenVAS
OpenVAS
added 2021/02/17 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-4736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.01556EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2021/02/16 4:59 p.m.124 views

USN-4736-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, or execute arbitrary code. CVE-2020-26976,...

8.8CVSS7.7AI score0.01556EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/02/16 12:0 a.m.33 views

Ubuntu 20.10 : Thunderbird vulnerabilities (USN-4736-1)

The remote Ubuntu 20.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4736-1 advisory. Several security issues were fixed in Thunderbird. Tenable has extracted the preceding description block directly from the Ubuntu security advisory. Note tha...

8.8CVSS7.3AI score0.01556EPSS
Exploits1References7
ArchLinux
ArchLinux
added 2021/02/06 12:0 a.m.224 views

[ASA-202102-2] thunderbird: multiple issues

Arch Linux Security Advisory ASA-202102-2 ========================================= Severity: High Date : 2021-02-06 CVE-ID : CVE-2020-15685 CVE-2020-26976 CVE-2021-23953 CVE-2021-23954 CVE-2021-23960 CVE-2021-23964 Package : thunderbird Type : multiple issues Remote : Yes Link :...

8.8CVSS0.9AI score0.01556EPSS
Exploits1References23
Mageia
Mageia
added 2021/02/04 1:40 p.m.49 views

Updated thunderbird packages fix security vulnerabilities

Cross-origin information leakage via redirected PDF requests. CVE-2021-23953 Type confusion when using logical assignment operators in JavaScript switch statements. CVE-2021-23954 IMAP Response Injection when using STARTTLS. CVE-2020-15685 HTTPS pages could have been intercepted by a registered...

8.8CVSS1.1AI score0.01556EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/02/04 12:0 a.m.57 views

openSUSE Security Update : MozillaFirefox (openSUSE-2021-223)

This update for MozillaFirefox fixes the following issues : - Firefox Extended Support Release 78.7.0 ESR MFSA 2021-04, bsc1181414 - CVE-2021-23953: Fixed a Cross-origin information leakage via redirected PDF requests - CVE-2021-23954: Fixed a type confusion when using logical assignment operator...

8.8CVSS7.2AI score0.01556EPSS
Exploits0References6
Rows per page
Query Builder