Lucene search
K

9 matches found

OSV
OSV
added 2026/06/16 8:13 p.m.7 views

GHSA-QXJP-W3PJ-48M7 Crawl4AI: AST Sandbox Escape via gi_frame.f_back Chain - Pre-Auth RCE in Docker API

Summary The safeevalexpression function in the computed fields feature uses an AST validator that only blocks attributes starting with underscore. Python generator and frame object attributes giframe, fback, fbuiltins do NOT start with underscore, enabling a complete sandbox escape to achieve...

9.8CVSS6.8AI score0.0045EPSS
Exploits1References4
NVD
NVD
added 2013/09/18 10:8 a.m.16 views

CVE-2013-1738

Use-after-free vulnerability in the JSGetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code by leveraging incorrect garbage collection in situations involving default compartments and...

9.3CVSS7.4AI score0.05908EPSS
Exploits0References14
Prion
Prion
added 2013/09/18 10:8 a.m.15 views

Design/Logic Flaw

Use-after-free vulnerability in the JSGetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code by leveraging incorrect garbage collection in situations involving default compartments and...

9.3CVSS8AI score0.05908EPSS
Exploits0References14Affected Software3
CVE
CVE
added 2013/09/18 10:0 a.m.122 views

CVE-2013-1738

CVE-2013-1738 describes a use-after-free in Mozilla’s JS_GetGlobalForScopeChain, enabling remote code execution via mismanaged garbage collection in default compartments during frame-chain restoration. Affected products from the provided data include Mozilla Firefox (before 24.0), Thunderbird (be...

9.3CVSS9.4AI score0.05908EPSS
Exploits0References14Affected Software1
Cvelist
Cvelist
added 2013/09/18 10:0 a.m.19 views

CVE-2013-1738

Use-after-free vulnerability in the JSGetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code by leveraging incorrect garbage collection in situations involving default compartments and...

9.6AI score0.05908EPSS
Exploits0References14
UbuntuCve
UbuntuCve
added 2013/09/17 12:0 a.m.23 views

CVE-2013-1738

Use-after-free vulnerability in the JSGetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code by leveraging incorrect garbage collection in situations involving default compartments and...

9.3CVSS7.3AI score0.05908EPSS
Exploits0References4
Prion
Prion
added 2009/07/22 6:30 p.m.26 views

Memory corruption

The browser engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 the frame chain and synchronous events, 2 a SetMayHaveFrame assertion and...

10CVSS8.2AI score0.05414EPSS
Exploits1References31Affected Software2
RedHat Linux
RedHat Linux
added 2009/07/22 12:54 a.m.1 views

Mozilla Browser engine crashes

The browser engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 the frame chain and synchronous events, 2 a SetMayHaveFrame assertion and...

10CVSS6.2AI score0.05414EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2009/07/22 12:0 a.m.28 views

CVE-2009-2462

The browser engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 the frame chain and synchronous events, 2 a SetMayHaveFrame assertion and...

10CVSS6.2AI score0.05414EPSS
Exploits1References2
Rows per page
Query Builder