Lucene search
K

56 matches found

OSV
OSV
added 2022/12/22 8:15 p.m.5 views

CVE-2022-22748

Malicious websites could have confused Firefox into showing the wrong origin when asking to launch a program and handling an external URL protocol. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

6.5CVSS8.7AI score
Exploits0References4
NVD
NVD
added 2022/12/22 8:15 p.m.22 views

CVE-2022-22748

Malicious websites could have confused Firefox into showing the wrong origin when asking to launch a program and handling an external URL protocol. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

6.5CVSS0.00737EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.7 views

CVE-2022-22748

Malicious websites could have confused Firefox into showing the wrong origin when asking to launch a program and handling an external URL protocol. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

5.8AI score0.00737EPSS
Exploits1References4
CVE
CVE
added 2022/12/22 12:0 a.m.514 views

CVE-2022-22748

CVE-2022-22748 is a cross-origin spoof vulnerability in Mozilla components where malicious websites could confuse Thunderbird or a browser dialog about launching a program to handle an external URL protocol, resulting in a spoofed origin. Public documentation in connected advisories ties this to ...

6.5CVSS7.1AI score0.00737EPSS
Exploits1References4Affected Software3
OpenVAS
OpenVAS
added 2022/02/09 12:0 a.m.19 views

Mozilla Firefox Security Advisory (MFSA2022-01) - Linux

The remote host is missing an update for Mozilla Firefox, announced via the advisory MFSA2022-01. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...

10CVSS6.7AI score0.0134EPSS
Exploits6References16
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-5246-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.0202EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2022/01/27 12:0 a.m.46 views

openSUSE 15 Security Update : MozillaThunderbird (openSUSE-SU-2022:0199-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0199-1 advisory. - Mozilla: Iframe sandbox bypass with XSLT CVE-2021-4140 - Mozilla: Race condition when playing audio files CVE-2022-22737 - Mozilla:...

10CVSS7.5AI score0.01344EPSS
Exploits6References30
OPENSUSE Linux
OPENSUSE Linux
added 2022/01/26 12:0 a.m.59 views

Security update for MozillaThunderbird (important)

openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2022:0199-1 Rating: important References: 1194547 Cross-References: CVE-2021-4140 CVE-2022-22737 CVE-2022-22738 CVE-2022-22739 CVE-2022-22740 CVE-2022-22741 CVE-2022-22742 CVE-2022-22743 CVE-2022-22744...

10CVSS9.2AI score0.01344EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2022/01/26 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2022:14880-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.01344EPSS
Exploits6References4
OpenVAS
OpenVAS
added 2022/01/22 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-5248-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.0383EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.43 views

openSUSE 15 Security Update : MozillaFirefox (openSUSE-SU-2022:0136-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0136-1 advisory. - Mozilla: Iframe sandbox bypass with XSLT CVE-2021-4140 - Mozilla: Race condition when playing audio files CVE-2022-22737 - Mozilla:...

10CVSS7.5AI score0.01344EPSS
Exploits6References30
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.65 views

SUSE SLED15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:0136-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0136-1 advisory. - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT bsc1194547. - CVE-2022-22737: Fixed race condition when...

10CVSS6.8AI score0.01344EPSS
Exploits6References30
OpenVAS
OpenVAS
added 2022/01/21 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:0137-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.01344EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.41 views

SUSE SLES15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:0137-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0137-1 advisory. - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT bsc1194547. - CVE-2022-22737: Fixed race condition when playing audio files...

10CVSS6.8AI score0.01344EPSS
Exploits6References30
ALT Linux
ALT Linux
added 2022/01/20 12:0 a.m.73 views

Security fix for the ALT Linux 10 package thunderbird version 91.5.0-alt1

91.5.0-alt1 built Jan. 20, 2022 Andrey Cherepanov in task 293378 Jan. 12, 2022 Andrey Cherepanov - New version. - Security fixes: + CVE-2022-22746 Calling into reportValidity could have lead to fullscreen window spoof + CVE-2022-22743 Browser window spoof using fullscreen mode + CVE-2022-22742...

8.6AI score0.01344EPSS
Exploits6
OpenVAS
OpenVAS
added 2022/01/20 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2022:0115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.01344EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.41 views

CentOS 7 : firefox (RHSA-2022:0124)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0124 advisory. - It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR 91.5, Firefo...

10CVSS7.8AI score0.0134EPSS
Exploits6References13
OpenVAS
OpenVAS
added 2022/01/19 12:0 a.m.27 views

CentOS: Security Advisory for firefox (CESA-2022:0124)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.8AI score0.0134EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2022/01/19 12:0 a.m.16 views

CentOS: Security Advisory for thunderbird (CESA-2022:0127)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.8AI score0.0134EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.39 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:0115-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0115-1 advisory. - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT bsc1194547. - CVE-2022-22737: Fixed race condition when playing audio files...

10CVSS6.8AI score0.01344EPSS
Exploits6References30
Rows per page
Query Builder