Lucene search
K

213 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:47 a.m.4 views

SUSE CVE-2017-7770

A mechanism where when a new tab is loaded through JavaScript events, if fullscreen mode is then entered, the addressbar will not be rendered. This would allow a malicious site to displayed a spoofed addressbar, showing the location of an arbitrary website instead of the one loaded. Note: this...

5.9CVSS6.2AI score0.01147EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:24 a.m.5 views

SUSE CVE-2018-16080

A missing check for popup window handling in Fullscreen in Google Chrome on macOS prior to 69.0.3497.81 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS8.3AI score0.01363EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:34 a.m.3 views

SUSE CVE-2022-0804

Inappropriate implementation in Full screen mode in Google Chrome on Android prior to 99.0.4844.51 allowed a remote attacker to hide the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS6.7AI score0.00863EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:34 a.m.2 views

SUSE CVE-2022-1129

Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 100.0.4896.60 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS6.6AI score0.00688EPSS
Exploits1References4
Mozilla
Mozilla
added 2023/02/15 12:0 a.m.129 views

Security Vulnerabilities fixed in Thunderbird 102.8 — Mozilla

If a MIME email combines OpenPGP and OpenPGP MIME data in a certain way Thunderbird repeatedly attempts to process and display the message, which could cause Thunderbird's user interface to lock up and no longer respond to the user's actions. An attacker could send a crafted message with this...

8.8CVSS0.8AI score0.00817EPSS
Exploits0References16Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/02/15 12:0 a.m.30 views

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2023-045-01)

The version of mozilla-firefox installed on the remote host is prior to 102.8.0esr / 110.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-045-01 advisory. - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory...

8.8CVSS7.8AI score0.00817EPSS
Exploits1References13
Mozilla
Mozilla
added 2023/02/14 12:0 a.m.164 views

Security Vulnerabilities fixed in Firefox 110 — Mozilla

The Content-Security-Policy-Report-Only header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe triggers a redirect. A background script invoking requestFullscreen and then blocking the main thread could force the browser into fullscreen mode...

8.8CVSS1.4AI score0.00817EPSS
Exploits0References24Affected Software1
OSV
OSV
added 2023/02/07 9:15 p.m.1 views

DEBIAN-CVE-2023-0697

Inappropriate implementation in Full screen mode in Google Chrome on Android prior to 110.0.5481.77 allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page. Chromium security severity: High...

6.5CVSS7AI score0.00514EPSS
Exploits0References1
OSV
OSV
added 2022/12/22 8:15 p.m.7 views

CVE-2022-31738

When exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user confusion or spoofing attacks. This vulnerability affects Thunderbird 91.10, Firefox 101, and Firefox ESR 91.10...

6.5CVSS8.9AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.5 views

CVE-2021-4128

When transitioning in and out of fullscreen mode, a graphics object was not correctly protected; resulting in memory corruption and a potentially exploitable crash.This bug only affects Firefox on MacOS. Other operating systems are unaffected.. This vulnerability affects Firefox 95...

6.5AI score0.00548EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.29 views

CVE-2021-4128

When transitioning in and out of fullscreen mode, a graphics object was not correctly protected; resulting in memory corruption and a potentially exploitable crash.This bug only affects Firefox on MacOS. Other operating systems are unaffected.. This vulnerability affects Firefox 95...

6.5CVSS6.4AI score0.00548EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.5 views

CVE-2022-22741

When resizing a popup while requesting fullscreen access, the popup would have become unable to leave fullscreen mode. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

7AI score0.00652EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.16 views

CVE-2022-31738

When exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user confusion or spoofing attacks. This vulnerability affects Thunderbird 91.10, Firefox 101, and Firefox ESR 91.10...

7.5AI score0.00584EPSS
Exploits0References4
OSV
OSV
added 2022/11/01 11:15 p.m.2 views

UBUNTU-CVE-2022-3660

Inappropriate implementation in Full screen mode in Google Chrome on Android prior to 107.0.5304.62 allowed a remote attacker to hide the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS7.3AI score0.00457EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/09/09 12:0 a.m.24 views

Mozilla Firefox ESR Security Advisory (MFSA2021-49) - Mac OS X

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

10CVSS7.8AI score0.0383EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/09/08 12:0 a.m.50 views

RHEL 9 : firefox (RHSA-2022:4873)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:4873 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS8.1AI score0.01055EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2022/08/16 12:0 a.m.41 views

GLSA-202208-08 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202208-08 Mozilla Firefox: Multiple Vulnerabilities - Use after free in Codecs in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-1919 - regex...

9.8CVSS8.3AI score0.26709EPSS
Exploits23References78
Cent OS
Cent OS
added 2022/08/02 7:48 p.m.57 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2022:4891 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.8CVSS7AI score0.01055EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/08/02 12:0 a.m.45 views

CentOS 7 : firefox (RHSA-2022:4870)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:4870 advisory. - A malicious website could have learned the size of a cross-origin resource that supported Range requests. This vulnerability affects Thunderbird 91.1...

9.8CVSS8AI score0.01055EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/07/15 12:0 a.m.60 views

Amazon Linux 2 : thunderbird (ALAS-2022-1818)

The version of thunderbird installed on the remote host is prior to 91.6.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1818 advisory. crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versio...

10CVSS8.4AI score0.0383EPSS
Exploits7References57
Rows per page
Query Builder