Lucene search
K

18 matches found

NVD
NVD
added 2022/12/22 8:15 p.m.16 views

CVE-2022-22752

Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox...

8.8CVSS0.00521EPSS
Exploits0References2
Prion
Prion
added 2022/12/22 8:15 p.m.16 views

Memory corruption

Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Firefox 94. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of thes...

7.5CVSS9.6AI score0.01013EPSS
Exploits1References4Affected Software3
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.9 views

CVE-2022-22751

Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink reported memory safety bugs present in Firefox 95 and Firefox ESR 91.4. Some of these bugs showed evidence of memory corruption and we presume that with...

9.1AI score0.0087EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2022/12/22 12:0 a.m.41 views

CVE-2022-22752

Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox...

8.8CVSS9.7AI score0.00521EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/12/22 12:0 a.m.55 views

CVE-2022-22751

Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink reported memory safety bugs present in Firefox 95 and Firefox ESR 91.4. Some of these bugs showed evidence of memory corruption and we presume that with...

8.8CVSS9.9AI score0.0087EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2022/01/13 12:0 a.m.42 views

CVE-2022-22752

Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox...

8.8CVSS7.3AI score0.00521EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/01/12 12:21 p.m.6 views

Mozilla: Memory safety bugs fixed in Firefox 96 and Firefox ESR 91.5

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink reported memory safety bugs present in Firefox 95 and Firefox ESR 91.4. Some of these...

8.8CVSS7.4AI score0.0087EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/12/10 12:0 a.m.240 views

Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-5186-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5186-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could...

8.8CVSS7.7AI score0.0202EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2021/12/09 12:58 p.m.8 views

Mozilla: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Thunderbird 91.3. Some of these bugs showed evidence o...

9.8CVSS7.5AI score0.01013EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/12/09 12:40 p.m.8 views

Mozilla: Bypass of CSP sandbox directive when embedding

Documents loaded with the CSP sandbox directive could have escaped the sandbox's script restriction by embedding additional content. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.1CVSS7.4AI score0.01352EPSS
Exploits0References4
Prion
Prion
added 2021/12/08 10:15 p.m.17 views

Spoofing

When receiving a URL through a SEND intent, Firefox would have searched for the text, but subsequent usages of the address bar might have caused the URL to load unintentionally, which could lead to XSS and spoofing attacks. This bug only affects Firefox for Android. Other operating systems are...

4.3CVSS5.4AI score0.0051EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2021/12/08 9:19 p.m.24 views

CVE-2021-43544

When receiving a URL through a SEND intent, Firefox would have searched for the text, but subsequent usages of the address bar might have caused the URL to load unintentionally, which could lead to XSS and spoofing attacks. This bug only affects Firefox for Android. Other operating systems are...

6.1CVSS7.8AI score0.0051EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/12/08 10:36 a.m.5 views

Mozilla: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Thunderbird 91.3. Some of these bugs showed evidence o...

9.8CVSS7.5AI score0.01013EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/12/08 10:36 a.m.12 views

Mozilla: Bypass of CSP sandbox directive when embedding

Documents loaded with the CSP sandbox directive could have escaped the sandbox's script restriction by embedding additional content. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.1CVSS7.4AI score0.01352EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/12/08 10:13 a.m.4 views

Mozilla: Denial of Service when using the Location API in a loop

Using the Location API in a loop could have caused severe application hangs and crashes. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS7.3AI score0.01597EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2021/12/08 12:0 a.m.23 views

CVE-2021-43544

When receiving a URL through a SEND intent, Firefox would have searched for the text, but subsequent usages of the address bar might have caused the URL to load unintentionally, which could lead to XSS and spoofing attacks. This bug only affects Firefox for Android. Other operating systems are...

6.1CVSS6.9AI score0.0051EPSS
Exploits0References2
OSV
OSV
added 2021/12/08 12:0 a.m.6 views

UBUNTU-CVE-2021-43546

It was possible to recreate previous cursor spoofing attacks against users with a zoomed native cursor. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

4.3CVSS7.3AI score0.014EPSS
Exploits0References8
The Hacker News
The Hacker News
added 2021/12/07 4:48 a.m.17 views

Latest Firefox 95 Includes RLBox Sandboxing to Protect Browser from Malicious Code

Mozilla is beginning to roll out Firefox 95 with a new sandboxing technology called RLBox that prevents untrusted code and other security vulnerabilities from causing "accidental defects as well as supply-chain attacks." Dubbed "RLBox" and implemented in collaboration with researchers at the...

1.3AI score
Exploits0
Rows per page
Query Builder