Lucene search
K

56 matches found

OSV
OSV
added 2024/01/23 2:15 p.m.1 views

DEBIAN-CVE-2024-0751

A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...

8.8CVSS7.9AI score0.00633EPSS
Exploits0References1
OSV
OSV
added 2024/01/23 2:15 p.m.0 views

UBUNTU-CVE-2024-0751

A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...

8.8CVSS7.3AI score0.00633EPSS
Exploits0References11
Cvelist
Cvelist
added 2024/01/23 1:48 p.m.23 views

CVE-2024-0751

A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...

8.5AI score0.00633EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2024/01/23 1:48 p.m.35 views

CVE-2024-0751

A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...

8.8CVSS8.6AI score0.00633EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.25 views

Mozilla Thunderbird < 115.7

The version of Thunderbird installed on the remote Windows host is prior to 115.7. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-04 advisory. - Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs showed...

8.8CVSS7.8AI score0.02155EPSS
Exploits0References10
CNNVD
CNNVD
added 2024/01/23 12:0 a.m.3 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the U.S.A. Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is email client software that supports the IMAP and POP mail protocols as well as the HTML mail format. An...

8.8CVSS9.1AI score0.00633EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2024/01/23 12:0 a.m.46 views

CVE-2024-0751

A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...

8.8CVSS7.1AI score0.00633EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.38 views

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2024-023-01)

The version of mozilla-firefox installed on the remote host is prior to 115.7.0esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-023-01 advisory. - An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially...

8.8CVSS7.8AI score0.02155EPSS
Exploits0References10
Mozilla
Mozilla
added 2024/01/23 12:0 a.m.51 views

Security Vulnerabilities fixed in Firefox ESR 115.7 — Mozilla

An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an incorrect timestamp used to prevent input after...

8.8CVSS8.4AI score0.02155EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.35 views

Mozilla Thunderbird < 115.7

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 115.7. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-04 advisory. - Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs...

8.8CVSS7.8AI score0.02155EPSS
Exploits0References10
Mozilla
Mozilla
added 2024/01/23 12:0 a.m.84 views

Security Vulnerabilities fixed in Thunderbird 115.7 — Mozilla

An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an incorrect timestamp used to prevent input after...

8.8CVSS8.2AI score0.02155EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.36 views

Mozilla Firefox ESR < 115.7

The version of Firefox ESR installed on the remote Windows host is prior to 115.7. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-02 advisory. - Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs showed...

8.8CVSS7.8AI score0.02155EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.65 views

Mozilla Firefox < 122.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 122.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-01 advisory. - Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs show...

8.8CVSS7.9AI score0.02155EPSS
Exploits0References16
Prion
Prion
added 2023/10/23 3:15 p.m.18 views

Code injection

The Vue.js Devtools extension was found to leak screenshot data back to a malicious web page via the standard postMessage API. By creating a malicious web page with an iFrame targeting a sensitive resource i.e. a locally accessible file or sensitive website, and registering a listener on the web...

4.3CVSS4.7AI score0.00248EPSS
Exploits1References1Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.4 views

SUSE CVE-2018-6140

Allowing the chrome.debugger API to attach to Web UI pages in DevTools in Google Chrome prior to 67.0.3396.62 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension...

8.8CVSS9.1AI score0.02644EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/07/26 12:0 a.m.8 views

The vulnerability of the sourceMapURL function in the DevTools set of web development tools for the Firefox browser allows attackers to disclose sensitive information.

The vulnerability of the sourceMapURL function in the DevTools browser extension for web development is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

5.4CVSS6.7AI score0.00572EPSS
Exploits1References5Affected Software2
Rows per page
Query Builder