Lucene search
+L

37 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Firefox and Thunderbird

When Responsive Design Mode was enabled, it used references to objects that had previously been freed. We assume that with sufficient effort, this could have been exploited to execute arbitrary code. This vulnerability affects Firefox ESR 78.10, Thunderbird 78.10, and Firefox 88...

8.8CVSS7AI score0.01214EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.9 views

Mozilla多款产品 安全漏洞

Mozilla Firefox, among others, are products of the American Mozilla Foundation. Mozilla Firefox is an open-source web browser. Mozilla Firefox ESR is a extended support version of Firefox the web browser. Mozilla Thunderbird is an email client software that emerged independently from the Mozilla...

9.8CVSS5.8AI score0.00439EPSS
Exploits0References1
NVD
NVD
added 2026/03/24 1:16 p.m.3 views

CVE-2026-4716

Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.1CVSS0.00407EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/03/24 1:16 p.m.9 views

CVE-2026-4693

Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.3AI score0.00687EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/03/24 1:16 p.m.4 views

CVE-2026-4705

Undefined behavior in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.3AI score0.00418EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/03/24 12:30 p.m.8 views

CVE-2026-4691

Use-after-free in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.9AI score0.00483EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/02/24 2:16 p.m.8 views

CVE-2026-2786

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00314EPSS
Exploits0References8
CVE
CVE
added 2026/01/13 1:30 p.m.27 views

CVE-2026-0880

CVE-2026-0880 is a sandbox-escape vulnerability: sandbox escape due to an integer overflow in the Graphics component. Affected products include Firefox (<147), Firefox ESR (<115.32 and <140.7), Thunderbird (<147 and

8.8CVSS5.8AI score0.0057EPSS
Exploits0References32Affected Software2
Vulnrichment
Vulnrichment
added 2026/01/13 1:30 p.m.1 views

CVE-2026-0878 Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component

Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7...

5.8AI score0.00417EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/05 2:17 a.m.8 views

firefox: thunderbird: Same-origin policy bypass in the Request Handling component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Same-origin policy bypass in the Request Handling component...

6.5CVSS5.7AI score0.00162EPSS
Exploits0References5
NVD
NVD
added 2025/12/09 4:17 p.m.3 views

CVE-2025-14329

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

8.8CVSS0.0034EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/01 2:53 a.m.5 views

firefox: thunderbird: Incorrect boundary conditions in the JavaScript: WebAssembly component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript: WebAssembly component...

7.5CVSS6AI score0.00449EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/01 2:12 a.m.8 views

firefox: thunderbird: Use-after-free in the Audio/Video component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Audio/Video component...

8.8CVSS5.7AI score0.00288EPSS
Exploits0References5
OSV
OSV
added 2025/11/11 4:15 p.m.5 views

UBUNTU-CVE-2025-13019

Same-origin policy bypass in the DOM: Workers component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.1CVSS7.2AI score0.00251EPSS
Exploits0References8
OSV
OSV
added 2025/09/16 1:15 p.m.4 views

CVE-2025-10529

Same-origin policy bypass in the Layout component. This vulnerability affects Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

6.5CVSS6.9AI score
Exploits0References7
Cvelist
Cvelist
added 2025/09/16 12:26 p.m.11 views

CVE-2025-10536 Information disclosure in the Networking: Cache component

Information disclosure in the Networking: Cache component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

0.00154EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-23603

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Regular expressions used to filter out forbidden properties and values from style directives in calls to console.log weren't accounting for external URLs. Data...

6.5CVSS7.6AI score0.00641EPSS
Exploits0References2
OSV
OSV
added 2024/06/11 12:0 a.m.10 views

UBUNTU-CVE-2024-5696

By manipulating the text in an input tag, an attacker could have caused corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12...

8.6CVSS7.3AI score0.00807EPSS
Exploits0References7
OSV
OSV
added 2023/11/21 3:15 p.m.2 views

UBUNTU-CVE-2023-6208

When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage not unlike the clipboard. This bug only affects Firefox on X11. Other systems are unaffected. This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and...

8.8CVSS7.3AI score0.00772EPSS
Exploits0References11
OSV
OSV
added 2023/06/02 5:15 p.m.4 views

DEBIAN-CVE-2023-32207

A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. This vulnerability affects Firefox 113, Firefox ESR 102.11, and Thunderbird 102.11...

8.8CVSS8AI score0.00731EPSS
Exploits0References1
Rows per page
Query Builder