Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-14518

Malware in sbrugna...

5.5CVSS7.5AI score0.00332EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-24956

Malware in sbrugna...

8.8CVSS9.1AI score0.01586EPSS
Exploits0References24
NVD
NVD
added 2022/11/10 9:15 p.m.40 views

CVE-2022-41874

Tauri is a framework for building binaries for all major desktop platforms. In versions prior to 1.0.7 and 1.1.2, Tauri is vulnerable to an Incorrectly-Resolved Name. Due to incorrect escaping of special characters in paths selected via the file dialog and drag and drop functionality, it is...

4.7CVSS0.00421EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/11/17 12:0 a.m.55 views

CentOS 7 : thunderbird (RHSA-2021:4134)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:4134 advisory. - The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or...

10CVSS8.3AI score0.0383EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.24 views

RHEL 8 : firefox (RHSA-2021:4607)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:4607 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

10CVSS7.8AI score0.0383EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.49 views

CentOS 8 : thunderbird (CESA-2021:4130)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:4130 advisory. - Mozilla: iframe sandbox rules did not apply to XSLT stylesheets CVE-2021-38503 - Mozilla: Use-after-free in file picker dialog CVE-2021-38504 -...

10CVSS7.6AI score0.0383EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2021/11/06 12:0 a.m.281 views

RHEL 8 : thunderbird (RHSA-2021:4130)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:4130 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.3.0. Security Fixes: Mozilla:...

10CVSS7.8AI score0.0383EPSS
Exploits0References19
OSV
OSV
added 2021/11/04 4:3 p.m.26 views

RLSA-2021:4130 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.3.0. Security Fixes: Mozilla: Use-after-free in HTTP2 Session object Mozilla: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3 Mozilla: iframe sandbox rules did not apply to XS...

10CVSS9.3AI score0.0383EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2021/11/04 12:0 a.m.50 views

RHEL 7 : firefox (RHSA-2021:4116)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:4116 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

10CVSS7.8AI score0.0383EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2021/11/03 7:52 p.m.2 views

Mozilla: Use-after-free in file picker dialog

The Mozilla Foundation Security Advisory describes this flaw as: When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use-after-free could have resulted, leading to memory corruption and a potentially exploitable crash...

8.8CVSS7.3AI score0.01586EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2021/11/03 12:0 a.m.49 views

CVE-2021-38504

When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use-after-free could have resulted, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox 94, Thunderbird 91.3, and Firefox ESR 91.3...

8.8CVSS7.2AI score0.01586EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2021/11/02 12:0 a.m.113 views

KLA12335 Multiple vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, bypass security restrictions, execute arbitrary code, cause denial of service, perform cross-site scripting attack. Below is a complete...

10CVSS9.4AI score0.0383EPSS
Exploits1References3
NVD
NVD
added 2018/06/11 9:29 p.m.17 views

CVE-2017-5414

The file picker dialog can choose and display the wrong local default directory when instantiated. On some operating systems, this can lead to information disclosure, such as the operating system or the local account name. This vulnerability affects Firefox 52 and Thunderbird 52...

5.5CVSS4.5AI score0.00332EPSS
Exploits1References5
CVE
CVE
added 2018/06/11 9:0 p.m.122 views

CVE-2017-5414

CVE-2017-5414 affects Mozilla Firefox (and Thunderbird) prior to version 52. The file picker dialog can instantiate and display the wrong local default directory, potentially disclosing OS or local account name. Remediation from connected docs: upgrade to Firefox 52.0+ (and Thunderbird 52.0+ as a...

5.5CVSS5.9AI score0.00332EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.22 views

CVE-2017-5414

The file picker dialog can choose and display the wrong local default directory when instantiated. On some operating systems, this can lead to information disclosure, such as the operating system or the local account name. This vulnerability affects Firefox 52 and Thunderbird 52...

6.1AI score0.00332EPSS
Exploits1References5
ArchLinux
ArchLinux
added 2017/03/10 12:0 a.m.68 views

[ASA-201703-3] firefox: multiple issues

Arch Linux Security Advisory ASA-201703-3 ========================================= Severity: Critical Date : 2017-03-10 CVE-ID : CVE-2017-5398 CVE-2017-5399 CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5403 CVE-2017-5404 CVE-2017-5405 CVE-2017-5406 CVE-2017-5407 CVE-2017-5408 CVE-2017-5410...

10CVSS0.4AI score0.17484EPSS
Exploits19References77
UbuntuCve
UbuntuCve
added 2017/03/07 12:0 a.m.24 views

CVE-2017-5414

The file picker dialog can choose and display the wrong local default directory when instantiated. On some operating systems, this can lead to information disclosure, such as the operating system or the local account name. This vulnerability affects Firefox 52 and Thunderbird 52...

5.5CVSS6.8AI score0.00332EPSS
Exploits1References3
Rows per page
Query Builder