Lucene search
K

54 matches found

OSV
OSV
added 2022/12/22 8:15 p.m.9 views

CVE-2022-29909

Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin, bypassing the existing prompt and wrongfully inheriting the top-level permissions. This vulnerability affects Thunderbird 91.9, Firefox ESR 91.9, and Firefox 100...

8.8CVSS8.9AI score
Exploits0References4
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.27 views

CVE-2022-29909

Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin, bypassing the existing prompt and wrongfully inheriting the top-level permissions. This vulnerability affects Thunderbird 91.9, Firefox ESR 91.9, and Firefox 100...

8.9AI score0.00848EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.8 views

CVE-2022-29909

Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin, bypassing the existing prompt and wrongfully inheriting the top-level permissions. This vulnerability affects Thunderbird 91.9, Firefox ESR 91.9, and Firefox 100...

6.5AI score0.00848EPSS
Exploits0References4
CVE
CVE
added 2022/12/22 12:0 a.m.556 views

CVE-2022-29909

CVE-2022-29909 is a Firefox/Thunderbird vulnerability described as privilege escalation via deeply-nested cross-origin browsing contexts that could inherit top-level permissions. Affected products and versions from connected advisories: Thunderbird < 91.9 and Firefox (including ESR)

8.8CVSS8.7AI score0.00848EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.40 views

CVE-2022-29909

Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin, bypassing the existing prompt and wrongfully inheriting the top-level permissions. This vulnerability affects Thunderbird 91.9, Firefox ESR 91.9, and Firefox 100...

8.8CVSS9.6AI score0.00848EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/09/08 12:0 a.m.35 views

RHEL 9 : thunderbird (RHSA-2022:4589)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:4589 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.0. Security Fixes: Mozilla:...

9.8CVSS7.6AI score0.01005EPSS
Exploits3References18
Tenable Nessus
Tenable Nessus
added 2022/07/07 12:0 a.m.41 views

Oracle Linux 9 : firefox (ELSA-2022-4590)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-4590 advisory. 91.9.0-1.0.1 - Replaced upstream package with oracle-indexhtml Orabug: 33802044 - Add firefox-oracle-default-prefs.js and remove the corresponding Red...

9.8CVSS7.8AI score0.01005EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2022/05/24 12:0 a.m.34 views

Debian DLA-3020-1 : thunderbird - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3020 advisory. Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For Debian 9 stretch, these...

9.8CVSS7.8AI score0.01005EPSS
Exploits3References19
OpenVAS
OpenVAS
added 2022/05/24 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-5435-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.26709EPSS
Exploits3References2
Debian
Debian
added 2022/05/23 7:46 a.m.50 views

[SECURITY] [DLA 3020-1] thunderbird security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3020-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort May 23, 2022 https://wiki.debian.org/LTS -...

9.8CVSS9.1AI score0.01005EPSS
Exploits3
OpenVAS
OpenVAS
added 2022/05/21 12:0 a.m.20 views

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2022:1748-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.5AI score0.01005EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2022/05/20 12:0 a.m.35 views

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2022:1757-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1757-1 advisory. - Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin,...

9.8CVSS8.3AI score0.01005EPSS
Exploits3References14
OpenVAS
OpenVAS
added 2022/05/20 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:1748-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.01005EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2022/05/20 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:1757-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.01005EPSS
Exploits3References4
Debian
Debian
added 2022/05/19 9:12 p.m.42 views

[SECURITY] [DSA 5141-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5141-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 19, 2022 https://www.debian.org/security/faq -...

9.8CVSS9.2AI score0.01005EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2022/05/18 1:29 a.m.42 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

9.8CVSS6.5AI score0.01005EPSS
Exploits3References9
RedHat Linux
RedHat Linux
added 2022/05/18 1:29 a.m.48 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS6.8AI score0.01005EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.37 views

SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2022:1719-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1719-1 advisory. Various security fixes MFSA 2022-18 bsc1198970: - CVE-2022-1520: Incorrect security status shown...

9.8CVSS6.6AI score0.01005EPSS
Exploits3References18
OpenVAS
OpenVAS
added 2022/05/18 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:1719-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.01005EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/05/18 12:0 a.m.21 views

openSUSE: Security Advisory for MozillaThunderbird (SUSE-SU-2022:1719-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.8AI score0.01005EPSS
Exploits3References2
Rows per page
Query Builder