Lucene search
K

17 matches found

Oracle linux
Oracle linux
added 2025/03/17 12:0 a.m.35 views

firefox security update

128.8.0-1.0.1 - Update to 128.8.0 build1 Orabug: 37700882CVE-2025-1930CVE-2025-1931 CVE-2025-1932CVE-2025-1933CVE-2025-1934CVE-2025-1935CVE-2025-1936 CVE-2025-1937CVE-2025-1938...

8.8CVSS7.2AI score0.00519EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/15 12:0 a.m.77 views

RHEL 8 : firefox (RHSA-2025:2485)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:2485 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.8CVSS6.9AI score0.00519EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2025/03/15 12:0 a.m.14 views

RHEL 8 : firefox (RHSA-2025:2484)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:2484 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.8CVSS6.9AI score0.00519EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2025/03/15 12:0 a.m.18 views

RHEL 9 : firefox (RHSA-2025:2480)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:2480 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.8CVSS6.9AI score0.00519EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2025/03/15 12:0 a.m.70 views

RHEL 9 : firefox (RHSA-2025:2479)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:2479 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.8CVSS6.9AI score0.00519EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2025/03/15 12:0 a.m.14 views

RHEL 9 : firefox (RHSA-2025:2481)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:2481 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.8CVSS6.9AI score0.00519EPSS
Exploits1References20
OpenVAS
OpenVAS
added 2025/03/10 12:0 a.m.16 views

Debian: Security Advisory (DSA-5876-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.7AI score0.00519EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/10 12:0 a.m.15 views

RHEL 8 : firefox (RHSA-2025:2452)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:2452 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.8CVSS6.9AI score0.00519EPSS
Exploits1References20
OpenVAS
OpenVAS
added 2025/03/07 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-7334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.00519EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/03/06 12:0 a.m.13 views

Debian: Security Advisory (DSA-5874-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.00519EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-1936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but...

7.3CVSS6.8AI score0.00413EPSS
Exploits0References3
OSV
OSV
added 2025/03/05 12:0 a.m.18 views

ALSA-2025:2359 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Use-after-free in WebTransportChild CVE-2025-1931 firefox: AudioIPC StreamData could trigger a use-after-free in the Browser process CVE-2025-1930 firefox:...

8.8CVSS8AI score0.00519EPSS
Exploits1References20
NVD
NVD
added 2025/03/04 2:15 p.m.12 views

CVE-2025-1936

jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but the fake extension after the null was used to determine the type of content. This could have been used to hide code in a web extension...

7.3CVSS0.00413EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/03/04 2:15 p.m.12 views

CVE-2025-1936

jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but the fake extension after the null was used to determine the type of content. This could have been used to hide code in a web extension...

7.3CVSS6.9AI score0.00413EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2025/03/04 1:31 p.m.8 views

CVE-2025-1936 Adding %00 and a fake extension to a jar: URL changed the interpretation of the contents

jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but the fake extension after the null was used to determine the type of content. This could have been used to hide code in a web extension...

6.8AI score0.00413EPSS
Exploits0References5
CVE
CVE
added 2025/03/04 1:31 p.m.141 views

CVE-2025-1936

CVE-2025-1936 is a Firefox/Thunderbird vulnerability where jar: URLs used to retrieve local ZIP contents could misclassify content due to a null-termination issue in the archive, potentially enabling disguised code in a web extension. Affected: Firefox before 136, Firefox ESR before 128.8, Thunde...

7.3CVSS6.8AI score0.00413EPSS
Exploits0References6Affected Software2
Debian CVE
Debian CVE
added 2025/03/04 1:31 p.m.13 views

CVE-2025-1936

jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but the fake extension after the null was used to determine the type of content. This could have been used to hide code in a web extension...

7.3CVSS7.2AI score0.00413EPSS
Exploits0
Rows per page
Query Builder