Lucene search
K

16 matches found

Cvelist
Cvelist
added 2022/12/22 12:0 a.m.34 views

CVE-2022-22744

The constructed curl command from the "Copy as curl" feature in DevTools was not properly escaped for PowerShell. This could have lead to command injection if pasted into a Powershell prompt.This bug only affects Thunderbird for Windows. Other operating systems are unaffected.. This vulnerability...

8.9AI score0.01344EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.12 views

CVE-2022-22744

The constructed curl command from the "Copy as curl" feature in DevTools was not properly escaped for PowerShell. This could have lead to command injection if pasted into a Powershell prompt.This bug only affects Thunderbird for Windows. Other operating systems are unaffected.. This vulnerability...

8.2AI score0.01344EPSS
Exploits0References4
CVE
CVE
added 2022/12/22 12:0 a.m.169 views

CVE-2022-22744

CVE-2022-22744 affects Thunderbird for Windows via the DevTools Copy as curl feature, where the constructed curl command was not properly escaped for PowerShell, potentially allowing command injection when pasted into a PowerShell prompt. Public details indicate affected software includes Thunder...

8.8CVSS8.5AI score0.01344EPSS
Exploits0References4Affected Software3
OpenVAS
OpenVAS
added 2022/02/01 12:0 a.m.19 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2022:0136-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.9AI score0.01344EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2022/02/01 12:0 a.m.19 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2022:0199-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.9AI score0.01344EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2022/01/27 12:0 a.m.46 views

openSUSE 15 Security Update : MozillaThunderbird (openSUSE-SU-2022:0199-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0199-1 advisory. - Mozilla: Iframe sandbox bypass with XSLT CVE-2021-4140 - Mozilla: Race condition when playing audio files CVE-2022-22737 - Mozilla:...

10CVSS7.5AI score0.01344EPSS
Exploits6References30
OPENSUSE Linux
OPENSUSE Linux
added 2022/01/26 12:0 a.m.59 views

Security update for MozillaThunderbird (important)

openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2022:0199-1 Rating: important References: 1194547 Cross-References: CVE-2021-4140 CVE-2022-22737 CVE-2022-22738 CVE-2022-22739 CVE-2022-22740 CVE-2022-22741 CVE-2022-22742 CVE-2022-22743 CVE-2022-22744...

10CVSS9.2AI score0.01344EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2022/01/26 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2022:14880-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.01344EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.43 views

openSUSE 15 Security Update : MozillaFirefox (openSUSE-SU-2022:0136-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0136-1 advisory. - Mozilla: Iframe sandbox bypass with XSLT CVE-2021-4140 - Mozilla: Race condition when playing audio files CVE-2022-22737 - Mozilla:...

10CVSS7.5AI score0.01344EPSS
Exploits6References30
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.65 views

SUSE SLED15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:0136-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0136-1 advisory. - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT bsc1194547. - CVE-2022-22737: Fixed race condition when...

10CVSS6.8AI score0.01344EPSS
Exploits6References30
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.41 views

SUSE SLES15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:0137-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0137-1 advisory. - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT bsc1194547. - CVE-2022-22737: Fixed race condition when playing audio files...

10CVSS6.8AI score0.01344EPSS
Exploits6References30
OpenVAS
OpenVAS
added 2022/01/21 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:0137-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.01344EPSS
Exploits6References4
OpenVAS
OpenVAS
added 2022/01/20 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2022:0115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.01344EPSS
Exploits6References4
ALT Linux
ALT Linux
added 2022/01/20 12:0 a.m.98 views

Security fix for the ALT Linux 10 package thunderbird version 91.5.0-alt1

91.5.0-alt1 built Jan. 20, 2022 Andrey Cherepanov in task 293378 Jan. 12, 2022 Andrey Cherepanov - New version. - Security fixes: + CVE-2022-22746 Calling into reportValidity could have lead to fullscreen window spoof + CVE-2022-22743 Browser window spoof using fullscreen mode + CVE-2022-22742...

8.6AI score0.01344EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.39 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:0115-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0115-1 advisory. - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT bsc1194547. - CVE-2022-22737: Fixed race condition when playing audio files...

10CVSS6.8AI score0.01344EPSS
Exploits6References30
Tenable Nessus
Tenable Nessus
added 2022/01/11 12:0 a.m.238 views

Mozilla Firefox ESR < 91.5

The version of Firefox ESR installed on the remote Windows host is prior to 91.5. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-02 advisory. - Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith,...

10CVSS7.8AI score0.01344EPSS
Exploits6References15
Rows per page
Query Builder