Lucene search
K

69 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : thunderbird-91.6.0-1.el8.ML.1 (AXSA:2022-3068:03)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3068:03 advisory. Mozilla: Extensions could have bypassed permission confirmation during update CVE-2022-22754 Mozilla: Memory safety bugs fixed in Firefox 97 and...

9.6CVSS8.5AI score0.00926EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : firefox-91.6.0-1.el8.ML.1 (AXSA:2022-3069:04)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3069:04 advisory. Mozilla: Extensions could have bypassed permission confirmation during update CVE-2022-22754 Mozilla: Memory safety bugs fixed in Firefox 97 and...

9.6CVSS8.5AI score0.00926EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.23 views

Rocky Linux 8 : thunderbird (RLSA-2022:0535)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0535 advisory. - If a user installed an extension of a particular type, the extension could have auto-updated itself and while doing so, bypass the prompt which grants...

9.6CVSS8.1AI score0.00926EPSS
Exploits1References15
OSV
OSV
added 2022/12/22 8:15 p.m.6 views

CVE-2022-22754

If a user installed an extension of a particular type, the extension could have auto-updated itself and while doing so, bypass the prompt which grants the new version the new requested permissions. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91.6...

6.5CVSS8.7AI score
Exploits0References4
OSV
OSV
added 2022/12/22 8:15 p.m.4 views

DEBIAN-CVE-2022-22754

If a user installed an extension of a particular type, the extension could have auto-updated itself and while doing so, bypass the prompt which grants the new version the new requested permissions. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91.6...

6.5CVSS6.5AI score0.00644EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.8 views

CVE-2022-22754

If a user installed an extension of a particular type, the extension could have auto-updated itself and while doing so, bypass the prompt which grants the new version the new requested permissions. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91.6...

5.9AI score0.00644EPSS
Exploits0References4
CVE
CVE
added 2022/12/22 12:0 a.m.532 views

CVE-2022-22754

CVE-2022-22754: Affects Firefox <97, Thunderbird <91.6, and Firefox ESR

6.5CVSS7AI score0.00644EPSS
Exploits0References4Affected Software3
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.25 views

Slackware: Security Advisory (SSA:2022-040-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS8.5AI score0.00926EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2022/03/24 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-5345-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.8AI score0.00931EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2022/03/11 12:0 a.m.37 views

AlmaLinux 8 : firefox (ALSA-2022:0510)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:0510 advisory. - Mozilla developers Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firefox ESR 91.5. Some of these bugs...

9.6CVSS8.1AI score0.00926EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2022/03/05 12:0 a.m.22 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2022:40696-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS8.5AI score0.00926EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/03/03 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2022:0676-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS9.3AI score0.00926EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2022/02/25 12:0 a.m.33 views

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2022:0565-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0565-1 advisory. - A Time-of-Check Time-of-Use bug existed in the Maintenance Updater Service that could be abused to grant Users write access to an...

9.6CVSS8.1AI score0.00926EPSS
Exploits2References19
OpenVAS
OpenVAS
added 2022/02/24 12:0 a.m.21 views

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2022:0559-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS8.6AI score0.00926EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/02/24 12:0 a.m.26 views

SUSE SLED15 / SLES15 Security Update : MozillaThunderbird (SUSE-SU-2022:0559-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0559-1 advisory. - It may be possible for an attacker to craft an email message that causes Thunderbird to perform an out-of-...

9.6CVSS8.1AI score0.00926EPSS
Exploits2References21
OPENSUSE Linux
OPENSUSE Linux
added 2022/02/23 12:0 a.m.93 views

Security update for MozillaThunderbird (important)

openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2022:0559-1 Rating: important References: 1195682 1196072 Cross-References: CVE-2022-0566 CVE-2022-22753 CVE-2022-22754 CVE-2022-22756 CVE-2022-22759 CVE-2022-22760 CVE-2022-22761 CVE-2022-22763...

9.6CVSS6.8AI score0.00926EPSS
Exploits2References2
ALT Linux
ALT Linux
added 2022/02/17 12:0 a.m.37 views

Security fix for the ALT Linux 10 package thunderbird version 91.6.0-alt1

91.6.0-alt1 built Feb. 17, 2022 Pavel Vasenkov in task 295262 Feb. 12, 2022 Pavel Vasenkov - New version. - Security fixes: + CVE-2022-22753 Privilege Escalation to SYSTEM on Windows via Maintenance Service + CVE-2022-22754 Extensions could have bypassed permission confirmation during update +...

8.7AI score0.00926EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2022/02/16 12:0 a.m.41 views

Oracle Linux 8 : firefox (ELSA-2022-0510)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-0510 advisory. 91.6.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.6.0-1 - Update to 91.6.0...

9.6CVSS7.6AI score0.00926EPSS
Exploits1References8
ALT Linux
ALT Linux
added 2022/02/16 12:0 a.m.86 views

Security fix for the ALT Linux 10 package firefox-esr version 91.6.0-alt1

91.6.0-alt1 built Feb. 16, 2022 Pavel Vasenkov in task 295122 Feb. 9, 2022 Pavel Vasenkov - New ESR version. - Security fixes: + CVE-2022-22753 Privilege Escalation to SYSTEM on Windows via Maintenance Service + CVE-2022-22754 Extensions could have bypassed permission confirmation during update +...

9AI score0.00926EPSS
Exploits2
OpenVAS
OpenVAS
added 2022/02/16 12:0 a.m.30 views

CentOS: Security Advisory for firefox (CESA-2022:0514)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS8.4AI score0.00926EPSS
Exploits1References2
Rows per page
Query Builder