Lucene search
K

75 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.17 views

Rocky Linux 8 : thunderbird (RLSA-2022:6164)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:6164 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8AI score0.00905EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.25 views

Amazon Linux 2 : firefox (ALASFIREFOX-2023-012)

The version of firefox installed on the remote host is prior to 91.13.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-012 advisory. A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Mozilla developers an...

8.8CVSS7.8AI score0.00905EPSS
Exploits0References18
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.28 views

CVE-2022-38472

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

7.2AI score0.00361EPSS
Exploits0References6
CVE
CVE
added 2022/12/22 12:0 a.m.190 views

CVE-2022-38472

The CVE-2022-38472 issue is a cross-origin spoofing vulnerability where XSLT error handling could allow attacker‑controlled content to be displayed as a different origin in the address bar, potentially tricking users into submitting data to a spoofed site. Affected products/versions (as stated in...

6.5CVSS7AI score0.00361EPSS
Exploits0References6Affected Software2
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.43 views

CVE-2022-38472

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

6.5CVSS8AI score0.00361EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/11/16 12:0 a.m.23 views

AlmaLinux 9 : firefox (ALSA-2022:6174)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6174 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

8.8CVSS7.7AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/10/11 12:0 a.m.26 views

Amazon Linux 2 : thunderbird (ALAS-2022-1855)

The version of thunderbird installed on the remote host is prior to 91.13.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1855 advisory. A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Mozilla developers and...

8.8CVSS7.8AI score0.00905EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-5663-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.0094EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/09/27 12:0 a.m.21 views

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2022:3396-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.5AI score0.23941EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/09/27 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:3396-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.23941EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2022/09/15 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2022:3272-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.23941EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2022/09/15 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2022:3273-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.23941EPSS
Exploits2References6
OSV
OSV
added 2022/09/14 4:48 a.m.8 views

SUSE-SU-2022:3272-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Mozilla Firefox was updated to 102.2.0esr ESR: Fixed: Various stability, functionality, and security fixes. - MFSA 2022-34 bsc1202645 CVE-2022-38472 bmo1769155 Address bar spoofing via XSLT error handling CVE-2022-38473 bmo1771685...

9.8CVSS8.4AI score0.23941EPSS
Exploits2References32
OpenVAS
OpenVAS
added 2022/09/06 12:0 a.m.21 views

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2022:3030-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.1AI score0.00905EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/09/06 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:3030-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.5AI score0.00905EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/09/06 12:0 a.m.30 views

SUSE SLED15: MozillaFirefox / MozillaFirefox-branding-SLE / etc (SUSE-SU-2022:3030-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3030-1 advisory. Firefox Extended Support Release 91.13.0 ESR bsc1202645: - CVE-2022-38472: Fixed a potential...

8.8CVSS6.9AI score0.00905EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/09/03 12:0 a.m.37 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:3007-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3007-1 advisory. Firefox Extended Support Release 91.13.0 ESR bsc1202645: - CVE-2022-38472: Fixed a potential address bar spoofing via XSLT error...

8.8CVSS6.9AI score0.00905EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2022/09/02 12:0 a.m.19 views

CentOS: Security Advisory for thunderbird (CESA-2022:6169)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8AI score0.00905EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/09/02 12:0 a.m.18 views

CentOS: Security Advisory for firefox (CESA-2022:6179)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8AI score0.00905EPSS
Exploits0References2
Cent OS
Cent OS
added 2022/09/01 10:1 p.m.77 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2022:6169 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.8CVSS6.9AI score0.00905EPSS
Exploits0References7
Rows per page
Query Builder