Lucene search
K

17057 matches found

OSV
OSV
added 2025/11/11 4:15 p.m.3 views

UBUNTU-CVE-2025-13026

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox 145 and Thunderbird 145...

9.8CVSS5.8AI score0.00317EPSS
Exploits0References5
OSV
OSV
added 2025/11/11 4:15 p.m.4 views

UBUNTU-CVE-2025-13023

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox 145 and Thunderbird 145...

9.8CVSS5.8AI score0.00317EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/11/11 3:47 p.m.4 views

CVE-2025-13026

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS8.4AI score0.00317EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2025/11/11 3:47 p.m.1 views

CVE-2025-13026

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/11 3:47 p.m.5 views

CVE-2025-13026 Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

0.00317EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/11 3:47 p.m.2 views

CVE-2025-13026 Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

7.3AI score0.00317EPSS
Exploits0References3
CVE
CVE
added 2025/11/11 3:47 p.m.15 views

CVE-2025-13026

The CVE-2025-13026 entry concerns a sandbox escape caused by incorrect boundary conditions in the Graphics: WebGPU component. Affected products are Mozilla Firefox and Thunderbird listed as <145 versions (Firefox <145 and Thunderbird

9.8CVSS7.3AI score0.00317EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2025/11/11 3:47 p.m.3 views

CVE-2025-13023

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/11/11 3:47 p.m.4 views

CVE-2025-13023

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS8.4AI score0.00317EPSS
Exploits0
Cvelist
Cvelist
added 2025/11/11 3:47 p.m.7 views

CVE-2025-13023 Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

0.00317EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/11 3:47 p.m.2 views

CVE-2025-13023 Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

7.3AI score0.00317EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/11/11 3:47 p.m.3 views

CVE-2025-13023

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/11/11 3:7 p.m.7 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/11 3:7 p.m.4 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.00673EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2025/11/11 3:7 p.m.2 views

runc: container escape with malicious config due to /dev/console mount and related races

A flaw was found in runc. CVE-2025-52565 is very similar in concept and application toCVE-2025-31133, except that it exploits a flaw in /dev/console bind-mounts. When creating the /dev/console bind-mount to /dev/pts/$n, if an attacker replaces /dev/pts/$n with a symlink then runc will bind-mount...

8.4CVSS5.7AI score0.00526EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/11/11 3:7 p.m.2 views

Important: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.4CVSS7.1AI score0.00673EPSS
Exploits4References4
RedhatCVE
RedhatCVE
added 2025/11/11 1:41 p.m.1 views

CVE-2025-11206

Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.2AI score0.00191EPSS
Exploits0References5
EUVD
EUVD
added 2025/11/11 12:30 a.m.5 views

EUVD-2025-50831

A privilege escalation vulnerability was identified in GitHub Enterprise Server that allowed an authenticated Enterprise admin to gain root SSH access to the appliance by exploiting a symlink escape in pre-receive hook environments. By crafting a malicious repository and environment, an attacker...

7.5CVSS6.8AI score0.00584EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.5 views

PT-2025-46363

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 145 Description A security issue exists in Firefox due to incorrect boundary conditions within the Graphics: WebGPU component, potentially leading to a sandbox escape. The issue was reported by Oskar L. Recommendation...

10CVSS6.4AI score0.0041EPSS
Exploits0References74
Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.2 views

Mozilla Firefox < 145.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 145.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-87 advisory. - Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of memory...

9.8CVSS6.5AI score0.0041EPSS
Exploits0References17
Rows per page
Query Builder