CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5443 matches found

Positive Technologies•added 2025/08/19 12:0 a.m.•7 views

PT-2025-33866

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 142 Firefox ESR versions prior to 115.27 Firefox ESR versions prior to 128.14 Firefox ESR versions prior to 140.2 Thunderbird versions prior to 142 Thunderbird versions prior to 128.14 Thunderbird versions prior to...

10CVSS9AI score0.09348EPSS

Exploits2References267

Mozilla•added 2025/08/19 12:0 a.m.•8 views

Security Vulnerabilities fixed in Firefox ESR 115.27 — Mozilla

An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process. Same-origin policy bypass in the Graphics: Canvas2D component. Memory safety bugs...

9.8CVSS8.4AI score0.0053EPSS

Exploits0References3Affected Software1

Tenable Nessus•added 2025/08/19 12:0 a.m.•5 views

Mozilla Firefox ESR < 128.14

The version of Firefox ESR installed on the remote Windows host is prior to 128.14. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-66 advisory. - Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1,...

9.8CVSS8.2AI score0.0053EPSS

Exploits0References5

Tenable Nessus•added 2025/08/19 12:0 a.m.•5 views

Mozilla Firefox ESR < 115.27

The version of Firefox ESR installed on the remote Windows host is prior to 115.27. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-65 advisory. - Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1,...

9.8CVSS8.2AI score0.0053EPSS

Exploits0References4

Tenable Nessus•added 2025/08/19 12:0 a.m.•4 views

Mozilla Thunderbird < 140.2

The version of Thunderbird installed on the remote Windows host is prior to 140.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-72 advisory. - Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1,...

9.8CVSS8.2AI score0.0053EPSS

Exploits0References7

Tenable Nessus•added 2025/08/19 12:0 a.m.•6 views

Mozilla Thunderbird < 128.14

The version of Thunderbird installed on the remote Windows host is prior to 128.14. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-71 advisory. - Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1,...

9.8CVSS8.2AI score0.0053EPSS

Exploits0References5

FreeBSD•added 2025/08/19 12:0 a.m.•7 views

Mozilla -- memory corruption in GMP

[email protected] reports: An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process...

9.8CVSS6.3AI score0.0053EPSS

Exploits0References1

Tenable Nessus•added 2025/08/19 12:0 a.m.•4 views

Mozilla Firefox ESR < 115.27

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.27. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-65 advisory. - Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox E...

9.8CVSS8.2AI score0.0053EPSS

Exploits0References4

RedhatCVE•added 2025/08/18 11:27 a.m.•4 views

CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS6.9AI score0.00106EPSS

Exploits0References4

RedhatCVE•added 2025/08/18 11:27 a.m.•5 views

CVE-2025-38508

In the Linux kernel, the following vulnerability has been resolved: x86/sev: Use TSCFACTOR for Secure TSC frequency calculation When using Secure TSC, the GUESTTSCFREQ MSR reports a frequency based on the nominal P0 frequency, which deviates slightly typically 0.2% from the actual mean TSC...

5.5CVSS7.1AI score0.00119EPSS

Exploits0References4

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2019-10740

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Roundcube Webmail before 1.3.10, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The...

4.3CVSS6.4AI score0.00771EPSS

Exploits1References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2024-49504

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - grub2 allowed attackers with access to the grub shell to access files on the encrypted disks. CVE-2024-49504 Note that Nessus relies on the presence of the...

7CVSS7.2AI score0.00328EPSS

Exploits0References2

SUSE CVE•added 2025/08/16 11:23 p.m.•1 views

SUSE CVE-2025-38508

4.4CVSS6.3AI score0.00119EPSS

Exploits0References9

NVD•added 2025/08/16 11:15 a.m.•3 views

CVE-2025-38506

5.5CVSS0.00106EPSS

Exploits0References3

NVD•added 2025/08/16 11:15 a.m.•6 views

CVE-2025-38508

5.5CVSS0.00119EPSS

Exploits0References2

CVE•added 2025/08/16 10:54 a.m.•29 views

CVE-2025-38508

CVE-2025-38508 : In the Linux kernel, the fix for SEV-SNP timekeeping uses the firmware-provided TSC_FACTOR to compute the mean TSC frequency, addressing clock skew between the hypervisor and SEV-SNP guests that caused hrtimers to fire early. The change applies to x86/sev Secure TSC handling and ...

5.5CVSS6.4AI score0.00119EPSS

Exploits0References2Affected Software1