Lucene search
K

16 matches found

UbuntuCve
UbuntuCve
added 2026/04/07 1:16 p.m.7 views

CVE-2026-5732

Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability was fixed in Firefox 149.0.2, Firefox ESR 140.9.1, Thunderbird 149.0.2, and Thunderbird 140.9.1...

8.8CVSS5.9AI score0.0035EPSS
Exploits0References9
OSV
OSV
added 2026/02/24 2:16 p.m.6 views

CVE-2026-2768

Sandbox escape in the Storage: IndexedDB component. This vulnerability affects Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

10CVSS5.8AI score
Exploits0References5
Debian CVE
Debian CVE
added 2026/02/24 1:33 p.m.6 views

CVE-2026-2760

Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

10CVSS5.2AI score0.00395EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/01/14 12:24 a.m.7 views

SUSE CVE-2026-0890

Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7...

6.3CVSS5.8AI score0.00261EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2026/01/05 1:42 a.m.5 views

firefox: thunderbird: Privilege escalation in the DOM: Notifications component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Privilege escalation in the DOM: Notifications component...

8.8CVSS5.7AI score0.00351EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/09/16 11:26 p.m.2 views

SUSE CVE-2025-10527

Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

7.1CVSS7AI score0.00258EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2025/09/16 12:26 p.m.1 views

CVE-2025-10536 Information disclosure in the Networking: Cache component

Information disclosure in the Networking: Cache component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

6.5AI score0.00154EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.11 views

Mozilla Firefox ESR < 140.2

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 140.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-67 advisory. - Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ES...

9.8CVSS8.2AI score0.0053EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-9818

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition is present in the crash generation server used to generate data for the crash reporter. This issue can lead to a use-after-free in the main...

8.3CVSS8AI score0.00954EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-6863

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ShutdownObserver was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor. This vulnerabilit...

8.8CVSS7.5AI score0.01037EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-23599

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When copying a network request from the developer tools panel as a curl command the output was not being properly sanitized and could allow arbitrary commands t...

6.5CVSS7.8AI score0.00601EPSS
Exploits0References2
OSV
OSV
added 2024/09/03 1:15 p.m.3 views

DEBIAN-CVE-2024-8383

Firefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does not support. It did not ask before doing so for the Usenet-related schemes news: and snews:. Since most operating systems don't have a trusted newsreader...

7.5CVSS8.2AI score0.00637EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:56 a.m.4 views

SUSE CVE-2020-15673

Mozilla developers reported memory safety bugs present in Firefox 80 and Firefox ESR 78.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 81, Thunderbi...

7.5CVSS9.3AI score0.01961EPSS
Exploits0References21
OSV
OSV
added 2022/12/22 8:15 p.m.0 views

DEBIAN-CVE-2022-22739

Malicious websites could have tricked users into accepting launching a program to handle an external URL protocol. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

6.5CVSS6.8AI score0.00679EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2021/10/12 2:50 p.m.2 views

Mozilla: Use-after-free of nsLanguageAtomService object

During process shutdown, a document could have caused a use-after-free of a languages service object, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox 93, Thunderbird 91.2, and Firefox ESR 91.2...

7.5CVSS7.4AI score0.0142EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/10/11 11:40 p.m.8 views

Mozilla: Blob and data URLs bypass phishing and malware protection warnings (MFSA 2017-22)

File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise ...

7.8CVSS7.3AI score0.01232EPSS
Exploits0References5
Rows per page
Query Builder