3 matches found
CVE-2025-4083
CVE-2025-4083 is a process isolation vulnerability in Thunderbird/Firefox caused by improper handling of javascript: URIs, which can let content execute in the top-level process instead of the intended frame, potentially enabling a sandbox escape. Affected: Firefox < 138, Firefox ESR < 128....
Spoofing
Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka "Windows Essentials Improper URI Handling Vulnerability."...
KLA10394 Multiple vulnerabilities in Siemens
Multiple critical vulnerabilities have been found in Siemens products. Malicious users can exploit these vulnerabilities to read & modify arbitrary files, cause denial of service, execute arbitrary code, bypass authentication, obtain access and inject arbitrary HTTP headers. Below is a complete...