22 matches found
TencentOS Server 3: firefox (TSSA-2024:0548)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0548 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Linux Distros Unpatched Vulnerability : CVE-2024-8900
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker could write data to the user's clipboard, bypassing the user prompt, during a certain sequence of navigational events. This vulnerability affects...
Oracle Linux 7 : firefox (ELSA-2024-7702)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-7702 advisory. 128.3.0-1.0.1 - Update to 128.3.0 Orabug: 37139909 Tenable has extracted the preceding description block directly from the Oracle Linux security...
Mageia: Security Advisory (MGASA-2024-0334)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2024:3629-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3629-1 advisory. Update to Mozilla Thunderbird 128.3.1 MFSA 2024-51, bsc1231413: - CVE-2024-9680: Use-after-free ...
Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.3.1 MFSA 2024-51, bsc1231413: CVE-2024-9680: Use-after-free in Animation timeline Update to Mozilla Thunderbird 128.3 MFSA 2024-49, bsc1230979: CVE-2024-9392: Compromised content process can bypass si...
openSUSE Security Advisory (SUSE-SU-2024:3614-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2024:3614-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: MozillaFirefox / MozillaFirefox-branding-upstream / etc (SUSE-SU-2024:3614-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3614-1 advisory. Update to Firefox Extended Support Release 128.3.1 ESR MFSA 2024-51 bsc1231413 - CVE-2024-9680:...
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.3.1 ESR MFSA 2024-51 bsc1231413 CVE-2024-9680: Use-after-free in Animation timeline bmo1923344 Also includes the following CVEs from MFSA 2024-47 bsc1230979 CVE-2024-9392: Compromised content...
SUSE: Security Advisory (SUSE-SU-2024:3603-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2024:3603-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3603-1 advisory. Update to Firefox Extended Support Release 128.3.1 ESR MFSA 2024-51 bsc1231413 - CVE-2024-9680: Use-after-free in Animation timelin...
SUSE-SU-2024:3603-1 Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.3.1 ESR MFSA 2024-51 bsc1231413 - CVE-2024-9680: Use-after-free in Animation timeline bmo1923344 Also includes the following CVEs from MFSA 2024-47 bsc1230979 - CVE-2024-9392: Compromised...
SUSE: Security Advisory (SUSE-SU-2024:3518-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Advisory (SUSE-SU-2024:3519-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2024:3518-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3518-1 advisory. Update to Firefox Extended Support Release 128.3.0 ESR MFSA-2024-47, bsc1230979: - CVE-2024-8900: Clipboard write permission bypass...
SUSE SLED15: MozillaFirefox / MozillaFirefox-branding-upstream / etc (SUSE-SU-2024:3519-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3519-1 advisory. Update to Firefox Extended Support Release 128.3.0 ESR MFSA-2024-47, bsc1230979: - CVE-2024-8900...
SUSE-SU-2024:3519-1 Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.3.0 ESR MFSA-2024-47, bsc1230979: - CVE-2024-8900: Clipboard write permission bypass - CVE-2024-9392: Compromised content process can bypass site isolation - CVE-2024-9393: Cross-origin acces...
Mozilla Thunderbird < 128.3
The version of Thunderbird installed on the remote Windows host is prior to 128.3. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-49 advisory. - An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the...
CVE-2024-8900
An attacker could write data to the user's clipboard, bypassing the user prompt, during a certain sequence of navigational events. This vulnerability affects Firefox 129...