Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-24962

Malware in sbrugna...

8.8CVSS7.7AI score0.00999EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-38510

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This...

8.8CVSS7.6AI score0.00999EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/04/05 12:0 a.m.7 views

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird for the Mac OS allow a hacker to execute arbitrary code.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird for the Mac OS operating system is related to access control deficiencies. Exploiting this vulnerability allows a malicious actor to execute arbitrary code during the loading of files with the .inetloc extension...

10CVSS7.6AI score0.00999EPSS
Exploits0References5Affected Software3
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.2 views

SUSE CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

6.1CVSS8.6AI score0.00999EPSS
Exploits0References11
NVD
NVD
added 2021/12/08 10:15 p.m.15 views

CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS0.00999EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2021/12/08 10:15 p.m.2 views

CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS6.9AI score0.00999EPSS
Exploits0References5
OSV
OSV
added 2021/12/08 10:15 p.m.2 views

CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS7.3AI score0.00999EPSS
Exploits0References4
OSV
OSV
added 2021/12/08 10:15 p.m.7 views

UBUNTU-CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS7.3AI score0.00999EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2021/12/08 9:21 p.m.58 views

CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS8.6AI score0.00999EPSS
Exploits0
CVE
CVE
added 2021/12/08 9:21 p.m.195 views

CVE-2021-38510

CVE-2021-38510 describes a Mac‑OS specific flaw where the executable file warning was not shown when downloading .inetloc files, which can cause commands to run on a user’s computer. Affected products and versions from the provided documents: Mozilla Firefox (Mac) < 94, Thunderbird < 91.3, ...

8.8CVSS8.3AI score0.00999EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVE
added 2021/12/08 9:21 p.m.34 views

CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS8AI score0.00999EPSS
Exploits0
Veracode
Veracode
added 2021/11/05 3:36 a.m.20 views

Command Injection

firefox is vulnerable to command injection. The vulnerability exists due to executable file warning was not presented when downloading .inetloc files, which allows the system to run malicious code on the system...

8.8CVSS3.1AI score0.00999EPSS
Exploits0References5Affected Software3
CNVD
CNVD
added 2021/11/04 12:0 a.m.24 views

Mozilla Firefox command injection vulnerability

Mozilla Firefox is an open source Web browser from the Mozilla Foundation in the U.S. A security vulnerability exists in Mozilla Firefox, which stems from a failure to display an executable warning when downloading an inetloc file that can run commands on a user's computer. No details of the...

8.8CVSS2.7AI score0.00999EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2021/11/03 1:10 a.m.31 views

CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS8.4AI score0.00999EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/11/03 12:0 a.m.229 views

Mozilla Thunderbird < 91.3

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.3. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-50 advisory. - The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass...

10CVSS8.1AI score0.17563EPSS
Exploits0References12
Mozilla
Mozilla
added 2021/11/02 12:0 a.m.46 views

Security Vulnerabilities fixed in Firefox ESR 91.3 — Mozilla

The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame. When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use-after-free could have...

10CVSS8AI score0.0383EPSS
Exploits0References10Affected Software1
Mozilla
Mozilla
added 2021/11/02 12:0 a.m.363 views

Security Vulnerabilities fixed in Firefox 94 — Mozilla

The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame. When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use-after-free could have...

10CVSS9.3AI score0.0383EPSS
Exploits1References13Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/11/02 12:0 a.m.30 views

Mozilla Firefox < 94.0

The version of Firefox installed on the remote Windows host is prior to 94.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-48 advisory. - The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such...

10CVSS7.4AI score0.0383EPSS
Exploits1References14
ThreatPost
ThreatPost
added 2021/09/22 5:22 p.m.19 views

Unpatched Apple Zero-Day Allows Code Execution

A zero-day security vulnerability in Apple’s macOS Finder system could allow remote attackers to trick users into running arbitrary commands, according to researchers – and a silent patch hasn’t fixed it. For those not in the Apple camp, the macOS Finder is the default file manager and GUI...

7.3AI score
Exploits0References8
The Hacker News
The Hacker News
added 2021/09/21 4:48 p.m.24 views

Unpatched High-Severity Vulnerability Affects Apple macOS Computers

Cybersecurity researchers on Tuesday disclosed details of an unpatched zero-day vulnerability in macOS Finder that could be abused by remote adversaries to trick users into running arbitrary commands on the machines. "A vulnerability in macOS Finder allows files whose extension is inetloc to...

1.5AI score
Exploits0
Rows per page
Query Builder