Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : firefox-102.7.0-1.el8.ML.1 (AXSA:2023-4857:04)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-4857:04 advisory. Mozilla: libusrsctp library out of date CVE-2022-46871 Mozilla: Arbitrary file read from GTK drag and drop on Linux CVE-2023-23598 Mozilla: Memory...

8.8CVSS8.3AI score0.00892EPSS
Exploits0References9
OSV
OSV
added 2023/02/07 12:6 a.m.8 views

MGASA-2023-0034 Updated thunderbird packages fix security vulnerability

libusrsctp library out of date. CVE-2022-46871 Arbitrary file read from GTK drag and drop on Linux. CVE-2023-23598 URL being dragged from cross-origin iframe into same tab triggers navigation. CVE-2023-23601 Content Security Policy wasn't being correctly applied to WebSockets in WebWorkers...

8.8CVSS7.3AI score0.00892EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/01/25 3:20 p.m.29 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a...

8.8CVSS7.2AI score0.00892EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/01/25 12:0 a.m.32 views

RHEL 8 : thunderbird (RHSA-2023:0457)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:0457 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Security Fixes: Mozilla:...

8.8CVSS8.1AI score0.00892EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2023/01/25 12:0 a.m.26 views

RHEL 8 : thunderbird (RHSA-2023:0460)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:0460 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Security Fixes: Mozilla:...

8.8CVSS8.1AI score0.00892EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2023/01/23 9:26 a.m.5 views

Mozilla: Fullscreen notification bypass

The Mozilla Foundation Security Advisory describes this flaw as: By confusing the browser, the fullscreen notification could have been delayed or suppressed, resulting in potential user confusion or spoofing attacks...

4.3CVSS7.3AI score0.00699EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.28 views

RHEL 9 : firefox (RHSA-2023:0286)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:0286 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS8.1AI score0.00892EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2022/12/13 4:8 p.m.4 views

Mozilla: Fullscreen notification bypass via windowName

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks...

6.5CVSS7.3AI score0.007EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/22 1:31 p.m.4 views

Mozilla: Fullscreen notification bypass via windowName

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks...

6.5CVSS7.3AI score0.007EPSS
Exploits0References6
OSV
OSV
added 2022/11/22 12:0 a.m.18 views

ALSA-2022:8580 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.5.0 ESR. Security Fixes: Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen...

9.8CVSS9.3AI score0.01061EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2022/11/22 12:0 a.m.54 views

RHEL 8 : firefox (RHSA-2022:8554)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8554 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS7.6AI score0.02241EPSS
Exploits1References29
RedHat Linux
RedHat Linux
added 2022/11/21 12:58 p.m.6 views

Mozilla: Fullscreen notification bypass via windowName

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks...

6.5CVSS7.3AI score0.007EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/21 12:53 p.m.25 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS6.8AI score0.01061EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2022/11/21 12:43 p.m.7 views

Mozilla: Fullscreen notification bypass

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of popup and window.print calls, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks...

6.5CVSS7.3AI score0.0061EPSS
Exploits0References6
OSV
OSV
added 2022/11/21 12:37 p.m.34 views

RLSA-2022:8554 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.5.0 ESR. Security Fixes: Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen...

9.8CVSS9.3AI score0.01061EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2022/11/21 12:35 p.m.4 views

Mozilla: Fullscreen notification bypass via windowName

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks...

6.5CVSS7.3AI score0.007EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/21 11:11 a.m.5 views

Mozilla: Fullscreen notification bypass via windowName

The Mozilla Foundation Security Advisory describes this flaw as: Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks...

6.5CVSS7.3AI score0.007EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/11/21 12:0 a.m.29 views

RHEL 8 : thunderbird (RHSA-2022:8544)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8544 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.5.0. Security Fixes: Mozilla:...

9.8CVSS7.6AI score0.01061EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2022/11/21 12:0 a.m.22 views

RHEL 8 : firefox (RHSA-2022:8548)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8548 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS7.6AI score0.02241EPSS
Exploits1References29
OSV
OSV
added 2022/11/21 12:0 a.m.25 views

ALSA-2022:8554 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.5.0 ESR. Security Fixes: Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen...

9.8CVSS9.3AI score0.01061EPSS
Exploits0References28
Rows per page
Query Builder