Lucene search
+L

603 matches found

bdu_fstec
bdu_fstec
added 2024/11/11 12:0 a.m.10 views

The vulnerability of the full-screen mode of the Mozilla Firefox Focus browser on Android operating systems allows attackers to carry out spoofing attacks.

The vulnerability of Mozilla Firefox Focus’ full-screen mode on Android operating systems is related to an improper limitation on the number of user interface layers that can be displayed. Exploiting this vulnerability allows a remote attacker to perform spoofing attacks...

6.4CVSS7.1AI score0.0028EPSS
Exploits0References5Affected Software1
vivaldi
vivaldi
added 2024/10/30 12:59 p.m.6 views

Minor update for Vivaldi Desktop Browser 7.0

Download Vivaldi The following improvements were made since the initial 7.0 stable release: Chromium Upgraded to 130.0.6723.96 CVE-2024-10487, CVE-2024-10488 Crash With Trash in Sessions Panel VB-110788 FeedsmacOS Can't rename top-level feed VB-110618 Keyboard Focus Next/Prev pane no longer...

8.8CVSS5.8AI score0.00653EPSS
Exploits0References1
github
github
added 2024/10/22 6:12 p.m.27 views

Umbraco has a Potential Code Execution Risk When Viewing SVG Files in Full Screen in Backoffice

Impact There is a potential risk of code execution for Backoffice users when they “preview” SVG files in full screen mode. Workarounds Server-side file validation is available to strip script tags from file's content during the file upload process...

4.6CVSS7.3AI score0.00428EPSS
Exploits0References3Affected Software2
nvd
nvd
added 2024/10/22 4:15 p.m.45 views

CVE-2024-48927

Umbraco, a free and open source .NET content management system, has a remote code execution issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.18.15. There is a potential risk of code execution for Backoffice users when they “preview” SVG files in full...

4.6CVSS0.00428EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/10/22 3:50 p.m.12 views

CVE-2024-48927 Potential Code Execution Risk When Viewing SVG Files in Full Screen in Backoffice

Umbraco, a free and open source .NET content management system, has a remote code execution issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.18.15. There is a potential risk of code execution for Backoffice users when they “preview” SVG files in full...

4.6CVSS8.1AI score0.00428EPSS
Exploits0References1
cvelist
cvelist
added 2024/10/22 3:50 p.m.41 views

CVE-2024-48927 Potential Code Execution Risk When Viewing SVG Files in Full Screen in Backoffice

Umbraco, a free and open source .NET content management system, has a remote code execution issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.18.15. There is a potential risk of code execution for Backoffice users when they “preview” SVG files in full...

4.6CVSS0.00428EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/10/22 12:0 a.m.6 views

Umbraco CMS 注入漏洞

Umbraco CMS is a content management system from Umbraco, Denmark. An injection vulnerability exists in Umbraco CMS that stems from a remote code execution issue that may expose users to code execution risk when previewing SVG files in full-screen mode...

4.6CVSS8.4AI score0.00428EPSS
Exploits0References2
cnvd
cnvd
added 2024/10/13 12:0 a.m.7 views

Unspecified Vulnerability in Mozilla Firefox (CNVD-2024-44473)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 131, which can be exploited by an attacker to prevent users who enable full-screen mode on specially crafted web pages from exiti...

6.5CVSS6.4AI score0.0028EPSS
Exploits0References1
susecve
susecve
added 2024/10/02 3:9 a.m.3 views

SUSE CVE-2024-9391

A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible. This bug only affects Firefox Focus for Android. Other versions of Firefox are...

7.1CVSS8.4AI score0.0028EPSS
Exploits0References4
redhatcve
redhatcve
added 2024/10/01 7:10 p.m.18 views

CVE-2024-9391

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full-screen mode. This may allow spoofing of other sites as the address bar is no...

7.1CVSS6.6AI score0.0028EPSS
Exploits0References5
osv
osv
added 2024/10/01 4:15 p.m.4 views

CVE-2024-9391

A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible. This bug only affects Firefox Focus for Android. Other versions of Firefox are...

6.5CVSS7.1AI score0.0028EPSS
Exploits0References2
alpinelinux
alpinelinux
added 2024/10/01 4:15 p.m.27 views

CVE-2024-9391

A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible. This bug only affects Firefox Focus for Android. Other versions of Firefox are...

6.6AI score0.0028EPSS
Exploits0
osv
osv
added 2024/10/01 4:15 p.m.7 views

UBUNTU-CVE-2024-9391

A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible. This bug only affects Firefox Focus for Android. Other versions of Firefox are...

6.5CVSS7AI score0.0028EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2024/10/01 3:13 p.m.17 views

CVE-2024-9391

A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible. This bug only affects Firefox Focus for Android. Other versions of Firefox are...

6.3AI score0.0028EPSS
Exploits0References2
debiancve
debiancve
added 2024/10/01 3:13 p.m.26 views

CVE-2024-9391

A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible. This bug only affects Firefox Focus for Android. Other versions of Firefox are...

6.5CVSS6.9AI score0.0028EPSS
Exploits0
cve
cve
added 2024/10/01 3:13 p.m.269 views

CVE-2024-9391

CVE-2024-9391: A bug in Firefox Focus for Android could prevent exiting full-screen mode on a specially crafted page, potentially enabling spoofing since the address bar is hidden. Affected: Firefox Focus for Android; Firefox versions before 131. Documented remediation: update to the latest Firef...

6.5CVSS6.3AI score0.0028EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2024/10/01 12:0 a.m.4 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 131, which can be exploited by an attacker to prevent users who enable full-screen mode on specially crafted web pages from exiti...

6.5CVSS8.6AI score0.0028EPSS
Exploits0References5
nessus
nessus
added 2024/10/01 12:0 a.m.40 views

Mozilla Firefox < 131.0

The version of Firefox installed on the remote Windows host is prior to 131.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-46 advisory. - An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the...

9.8CVSS7.8AI score0.00733EPSS
Exploits0References14
mozilla
mozilla
added 2024/10/01 12:0 a.m.43 views

Security Vulnerabilities fixed in Firefox 131 — Mozilla

A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing of other sites as the address bar is no longer visible.This bug only affects Firefox Focus for Android. Other versions of Firefox are unaffecte...

9.8CVSS8.2AI score0.00549EPSS
Exploits0References14Affected Software1
ptsecurity
ptsecurity
added 2024/10/01 12:0 a.m.11 views

PT-2024-7792

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 131 Firefox Focus for Android versions prior to 131 Description A user who enables full-screen mode on a specially crafted web page could potentially be prevented from exiting full screen mode. This may allow spoofing...

9.8CVSS8.9AI score0.72648EPSS
Exploits43References732
Rows per page
Query Builder