Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1896 matches found

Debian CVE
Debian CVEadded 2020/05/26 5:1 p.m.20 views

CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

7.8CVSS9.1AI score0.00467EPSS
Exploits0
Ubuntu
Ubuntuadded 2020/05/26 2:33 p.m.92 views

USN-4373-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, or execute arbitrary code. CVE-2020-6831, CVE-2020-12387, CVE-2020-12395 It wa...

10CVSS7.8AI score0.10449EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2020/05/21 12:0 a.m.45 views

Amazon Linux 2 : thunderbird (ALAS-2020-1429)

The version of thunderbird installed on the remote host is prior to 68.8.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1429 advisory. The Mozilla Foundation Security Advisory describes this flaw as:On 32-bit builds, an out of bounds write could have...

10CVSS8.2AI score0.10449EPSS
Exploits1References21
Ubuntu
Ubuntuadded 2020/05/12 5:52 p.m.93 views

USN-4353-2: Firefox regression

USN-4353-1 fixed vulnerabilities in Firefox. The update caused a regression that impaired the functionality of some addons. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were tricked in ...

7.7AI score
Exploits0References1
RedHat Linux
RedHat Linuxadded 2020/05/11 9:54 a.m.3 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/05/11 9:40 a.m.3 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/05/11 9:7 a.m.4 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/05/11 9:1 a.m.2 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2020/05/11 12:0 a.m.239 views

openSUSE Security Update : MozillaThunderbird (openSUSE-2020-643)

This update for MozillaThunderbird fixes the following issues : - Update to 68.8.0 ESR MFSA 2020-18 bsc1171186 - CVE-2020-12397 bmo1617370 Sender Email Address Spoofing using encoded Unicode characters - CVE-2020-12387 bmo1545345 Use-after-free during worker shutdown - CVE-2020-6831 bmo1632241...

10CVSS7.3AI score0.10449EPSS
Exploits0References7
Mageia
Mageiaadded 2020/05/08 10:57 a.m.41 views

Updated firefox packages fix security vulnerabilities

Updated firefox packages fix security vulnerabilities: A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash CVE-2020-6831. A race condition when running shutdown code for Web Worker led to a...

10CVSS0.2AI score0.10449EPSS
Exploits0References3
Mageia
Mageiaadded 2020/05/08 10:57 a.m.50 views

Updated thunderbird packages fix security vulnerabilities

Updated thunderbird packages fix security vulnerabilities: A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash CVE-2020-6831. A race condition when running shutdown code for Web Worker led to...

10CVSS0.1AI score0.10449EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2020/05/08 12:0 a.m.53 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-4353-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4353-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacke...

10CVSS7.8AI score0.10449EPSS
Exploits0References9
RedHat Linux
RedHat Linuxadded 2020/05/06 10:53 a.m.1 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/05/06 10:49 a.m.1 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/05/06 8:28 a.m.2 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/05/06 8:12 a.m.1 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.00089EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2020/05/06 1:40 a.m.18 views

CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

4.6CVSS1.4AI score0.00467EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2020/05/06 12:0 a.m.26 views

CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

5.5CVSS6.9AI score0.00089EPSS
Exploits0References6
OSV
OSVadded 2020/05/06 12:0 a.m.0 views

UBUNTU-CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

5.5CVSS6.9AI score0.10449EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2020/05/05 4:41 p.m.29 views

CVE-2020-12392

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

2.1CVSS7.5AI score0.00089EPSS
Exploits0References4
Rows per page
Query Builder