Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9454 matches found

UbuntuCve
UbuntuCveadded 2019/07/03 7:15 p.m.25 views

CVE-2019-5052

An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocated, which can lead to a buffer overflow and potential code execution. An attacker can provide a...

8.8CVSS7.5AI score0.01512EPSS
Exploits1References3
Cvelist
Cvelistadded 2019/07/03 6:43 p.m.22 views

CVE-2019-5052

An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocated, which can lead to a buffer overflow and potential code execution. An attacker can provide a...

8.8CVSS8.8AI score0.01512EPSS
Exploits1References8
Veracode
Veracodeadded 2019/07/01 12:15 a.m.31 views

Denial Of Service (DoS)

firefox/thunderbird is vulnerable to denial of service. A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw...

8.8CVSS9AI score0.84291EPSS
Exploits7References8Affected Software4
RedHat Linux
RedHat Linuxadded 2019/06/27 10:18 a.m.3 views

Mozilla: Type confusion in Array.pop

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR 60.7.1, Firefox 67.0.3, and Thunderbird 60.7.2...

8.8CVSS7.3AI score0.84291EPSS
Exploits7References6
RedHat Linux
RedHat Linuxadded 2019/06/27 10:16 a.m.3 views

Mozilla: Type confusion in Array.pop

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR 60.7.1, Firefox 67.0.3, and Thunderbird 60.7.2...

8.8CVSS7.3AI score0.84291EPSS
Exploits7References6
RedHat Linux
RedHat Linuxadded 2019/06/27 9:19 a.m.2 views

libical: Heap buffer over read in icalparser.c parser_get_next_char

A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in parsergetnextchar when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7.1...

9.8CVSS7.6AI score0.08154EPSS
Exploits4References5
Atlassian
Atlassianadded 2019/06/26 5:27 a.m.58 views

CVE-2019-11581 - Template injection in various resources

There was a server-side template injection vulnerability in Jira Server and Data Center, in the ContactAdministrators and the SendBulkMail actions. For this issue to be exploitable at least one of the following conditions must be met: an SMTP server has been configured in Jira and the Contact...

9.8CVSS2.6AI score0.94355EPSS
Exploits2
Exploit DB
Exploit DBadded 2019/06/26 12:0 a.m.271 views

Mozilla Spidermonkey - IonMonkey 'Array.prototype.pop' Type Confusion

The following program found through fuzzing and manually modified crashes Spidermonkey built from the current beta channel and Firefox 66.0.3 current stable: // Run with --no-threads for increased reliability const v4 = a: 0, a: 1, a: 2, a: 3, a: 4; function v7v8,v9 if v4.length == 0 v43 = a: 5; ...

7.4AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2019/06/25 6:19 p.m.0 views

Mozilla: Type confusion in Array.pop

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR 60.7.1, Firefox 67.0.3, and Thunderbird 60.7.2...

8.8CVSS7.3AI score0.84291EPSS
Exploits7References6
Veracode
Veracodeadded 2019/06/21 5:14 a.m.13 views

Authentication Bypass

openid is vulnerable to authentication bypass which can be exploitable remotely depending on the way the OpenID integration is performed. The risk can be higher if the integration is done fully based on the example app provided by the project...

9.8CVSS9.3AI score0.01731EPSS
Exploits0References4Affected Software2
Mozilla
Mozillaadded 2019/06/20 12:0 a.m.66 views

Security vulnerabilities fixed in Thunderbird 60.7.2 — Mozilla

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. Insufficient vetting of parameters passed with the Prompt:Open IPC message between chi...

10CVSS1.4AI score0.84291EPSS
Exploits14References2Affected Software1
UbuntuCve
UbuntuCveadded 2019/06/19 12:0 a.m.39 views

CVE-2019-11707

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR 60.7.1, Firefox 67.0.3, and Thunderbird 60.7.2...

8.8CVSS7AI score0.84291EPSS
Exploits7References5
OSV
OSVadded 2019/06/19 12:0 a.m.1 views

UBUNTU-CVE-2019-11707

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR 60.7.1, Firefox 67.0.3, and Thunderbird 60.7.2...

8.8CVSS7AI score0.84291EPSS
Exploits7References6
Tenable Nessus
Tenable Nessusadded 2019/06/18 12:0 a.m.37 views

Mozilla Thunderbird < 60.7.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 60.7.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2019-17 advisory. - A flaw in Thunderbird's implementation of iCal causes a stack buffer overflow in icalrecuraddbydayrules...

9.8CVSS7.6AI score0.08559EPSS
Exploits14References5
FreeBSD
FreeBSDadded 2019/06/18 12:0 a.m.101 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2019-11707: Type confusion in Array.pop A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw...

8.8CVSS1.9AI score0.84291EPSS
Exploits7References1
VulnCheck KEV
VulnCheck KEVadded 2019/06/18 12:0 a.m.3 views

VulnCheck KEV: CVE-2019-11707

Mozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash...

8.8CVSS7AI score0.84291EPSS
Exploits7References1
Tenable Nessus
Tenable Nessusadded 2019/06/18 12:0 a.m.29 views

Mozilla Firefox ESR < 60.7.1

The version of Firefox ESR installed on the remote Windows host is prior to 60.7.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2019-18 advisory. - A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow f...

8.8CVSS8.1AI score0.84291EPSS
Exploits7References2
Tenable Nessus
Tenable Nessusadded 2019/06/18 12:0 a.m.37 views

Mozilla Firefox < 67.0.3

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 67.0.3. It is, therefore, affected by a vulnerability as referenced in the mfsa2019-18 advisory. - A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can...

8.8CVSS8.1AI score0.84291EPSS
Exploits7References2
Prion
Prionadded 2019/06/17 9:15 p.m.10 views

Memory corruption

An exploitable arbitrary memory read vulnerability exists in the KCodes NetUSB.ko kernel module which enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. A specially crafted index value can cause an invalid memory...

6.4CVSS8.5AI score0.02422EPSS
Exploits0References2Affected Software3
Cvelist
Cvelistadded 2019/06/17 8:29 p.m.23 views

CVE-2019-5016

An exploitable arbitrary memory read vulnerability exists in the KCodes NetUSB.ko kernel module which enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. A specially crafted index value can cause an invalid memory...

10CVSS8.8AI score0.02422EPSS
Exploits0References2
Rows per page
Query Builder