Lucene search
K

51 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.35 views

CentOS 7 : firefox (RHSA-2022:6711)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6711 advisory. - When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead. This...

8.8CVSS8.3AI score0.01342EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.36 views

Amazon Linux 2 : firefox (ALASFIREFOX-2023-010)

The version of firefox installed on the remote host is prior to 102.4.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-010 advisory. 2023-09-27: CVE-2021-28429 was added to this advisory. Integer overflow vulnerability in avtimecodemakestring in...

8.8CVSS8.3AI score0.01659EPSS
Exploits0References28
OSV
OSV
added 2022/12/22 8:15 p.m.5 views

CVE-2022-40960

Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5CVSS8.2AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.2 views

CVE-2022-40960

Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5AI score0.00947EPSS
Exploits0References4
CVE
CVE
added 2022/12/22 12:0 a.m.156 views

CVE-2022-40960

CVE-2022-40960: Concurrent use of the URL parser with non-UTF-8 data is not thread-safe, causing a use-after-free and potentially exploitable crash. Affected products include Firefox ESR < 102.3, Thunderbird < 102.3, and Firefox

6.5CVSS6.9AI score0.00947EPSS
Exploits0References4Affected Software3
AlpineLinux
AlpineLinux
added 2022/12/22 12:0 a.m.22 views

CVE-2022-40960

Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5CVSS7.3AI score0.00947EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/11/16 12:0 a.m.33 views

AlmaLinux 9 : thunderbird (ALSA-2022:6717)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6717 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

8.8CVSS7.4AI score0.01342EPSS
Exploits0References11
ALT Linux
ALT Linux
added 2022/10/10 12:0 a.m.104 views

Security fix for the ALT Linux 10 package firefox-esr version 102.3.0-alt1

Oct. 10, 2022 Pavel Vasenkov 102.3.0-alt1 - New ESR version. - Security fixes: + CVE-2022-3266 Out of bounds read when decoding H264 + CVE-2022-40959 Bypassing FeaturePolicy restrictions on transient pages + CVE-2022-40960 Data-race when parsing non-UTF-8 URLs in threads + CVE-2022-40958 Bypassin...

8.2AI score0.01342EPSS
Exploits0
ALT Linux
ALT Linux
added 2022/10/09 12:0 a.m.120 views

Security fix for the ALT Linux 10 package thunderbird version 102.3.0-alt1

Oct. 9, 2022 Pavel Vasenkov 102.3.0-alt1 - New version. - Security fixes: + CVE-2022-3266 Out of bounds read when decoding H264 + CVE-2022-40959 Bypassing FeaturePolicy restrictions on transient pages + CVE-2022-40960 Data-race when parsing non-UTF-8 URLs in threads + CVE-2022-40958 Bypassing...

7.9AI score0.01342EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.34 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:3440-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3440-1 advisory. Mozilla Firefox was updated from 102.2.0esr to 102.3.0esr bsc1203477: - CVE-2022-40959: Fixed bypassing FeaturePolicy restrictions ...

8.8CVSS6.8AI score0.01342EPSS
Exploits0References14
UbuntuCve
UbuntuCve
added 2022/09/28 12:0 a.m.36 views

CVE-2022-40960

Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5CVSS6.9AI score0.00947EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/09/28 12:0 a.m.32 views

Oracle Linux 9 : firefox (ELSA-2022-6700)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-6700 advisory. 102.3.0-6.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.3.0-6 - Update to 102.3...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/09/28 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2022:3440-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.4AI score0.01342EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/09/28 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2022:3441-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.4AI score0.01342EPSS
Exploits0References4
Debian
Debian
added 2022/09/27 9:9 p.m.42 views

[SECURITY] [DLA 3123-1] thunderbird security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3123-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort September 27, 2022 https://wiki.debian.org/LTS -...

8.8CVSS9AI score0.01342EPSS
Exploits0
Debian
Debian
added 2022/09/27 6:37 p.m.35 views

[SECURITY] [DSA 5238-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5238-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 27, 2022 https://www.debian.org/security/faq -...

8.8CVSS9.1AI score0.01342EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/09/27 12:0 a.m.21 views

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2022:3396-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.5AI score0.23941EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/09/27 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:3396-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.23941EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2022/09/26 4:34 p.m.47 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/09/26 3:57 p.m.54 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
Rows per page
Query Builder