RockyLinux 10 : thunderbird (RLSA-2026:3517)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:3517 advisory. libvpx: Heap buffer overflow in libvpx CVE-2026-2447 firefox: Invalid pointer in the JavaScript Engine component CVE-2026-2785 firefox: Memory safety bu...

AlmaLinux 9 : firefox (ALSA-2026:3339)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:3339 advisory. libvpx: Heap buffer overflow in libvpx CVE-2026-2447 firefox: Invalid pointer in the JavaScript Engine component CVE-2026-2785 firefox: Memory safety bugs...

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Graphics component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Graphics component...

Linux Distros Unpatched Vulnerability : CVE-2020-12389

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on...

Linux Distros Unpatched Vulnerability : CVE-2020-12388

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on...

CVE-2025-2857

Firefox on Windows was vulnerable to a sandbox-escape in the IPC code where a compromised child process could cause the parent to return an unintentionally powerful handle. This pattern mirrors the Chrome/CVE-2025-2783 lineage and was exploited in the wild. The issue affected Firefox on Windows o...

SUSE CVE-2013-0643

The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, does not properly restrict privileges, which makes it easier for remote attackers to execute arbitrary code via crafted...

Mozilla: iframe Sandbox bypass

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Firefox not protecting against top-level navigations for an iframe sandbox with a policy relaxed through a keyword likely to allow top-navigation-by-user-activation...

The vulnerability in the implementation of the process for launching child elements in the Firefox sandbox broker allows a malicious actor to gain unauthorized access to protected information, compromise its integrity, or cause service failures.

The vulnerability of the process for launching child elements in the Firefox sandbox broker’s sandbox environment is related to a file truncation error. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information, compromise its integrity, or cause...

CVE-2018-18505

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

Adobe Flash Player Multiple Vulnerabilities -01 March13 (Windows)

This host is installed with Adobe Flash Player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeflashplayermultvuln01mar13win.nasl 8178 2017-12-19 13:42:38Z cfischer $ Adobe Flash Player Multiple Vulnerabilities -01 March13 Windows Authors: Arun Kallavi Copyright:...

Adobe Flash Player Multiple Vulnerabilities -01 March13 (Mac OS X)

This host is installed with Adobe Flash Player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeflashplayermultvuln01mar13macosx.nasl 6079 2017-05-08 09:03:33Z teissa $ Adobe Flash Player Multiple Vulnerabilities -01 March13 Mac OS X Authors: Arun Kallavi Copyright...

Adobe Flash Player Multiple Vulnerabilities -01 (Mar 2013) - Windows

Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer";...

Adobe Flash Player Multiple Vulnerabilities -01 March13 (Linux)

This host is installed with Adobe Flash Player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeflashplayermultvuln01mar13lin.nasl 6125 2017-05-15 09:03:42Z teissa $ Adobe Flash Player Multiple Vulnerabilities -01 March13 Linux Authors: Arun Kallavi Copyright:...

Adobe Flash Player Multiple Vulnerabilities -01 (Mar 2013) - Mac OS X

Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"impact",...

CVE-2013-0643

The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, does not properly restrict privileges, which makes it easier for remote attackers to execute arbitrary code via crafted...

VulnCheck KEV: CVE-2013-0643

Adobe Flash Player contains an incorrect default permissions vulnerability in the Firefox sandbox that allows a remote attacker to execute arbitrary code via crafted SWF content...

Flash Player <= 10.3.183.63 / 11.6.602.168 Multiple Vulnerabilities (APSB13-08)

According to its version, the instance of Flash Player installed on the remote Windows host is 11.x equal or prior to 11.6.602.168, or 10.x equal or prior to 10.3.183.63. It is, therefore, potentially affected by the following vulnerabilities : - A buffer overflow error exists related to the...

Flash Player for Mac <= 10.3.183.61 / 11.6.602.167 Multiple Vulnerabilities (APSB13-08)

According to its version, the instance of Flash Player installed on the remote Mac OS X host is 11.x equal or prior to 11.6.602.167, or 10.x equal or prior to 10.3.183.61. It is, therefore, potentially affected by the following vulnerabilities : - A buffer overflow error exists related to the...