Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

550 matches found

Tenable Nessus
Tenable Nessusadded 2019/03/29 12:0 a.m.53 views

Mozilla Firefox < 66.0 Multiple Vulnerabilities

Binary data 700487.prm...

9.8CVSS7.8AI score0.38066EPSS
Exploits13References22
OSV
OSVadded 2019/03/20 12:0 a.m.1 views

UBUNTU-CVE-2019-9799

Insufficient bounds checking of data during inter-process communication might allow a compromised content process to be able to read memory from the parent process under certain conditions. This vulnerability affects Firefox 66...

7.5CVSS7.1AI score0.00235EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2019/03/19 12:0 a.m.257 views

Mozilla Firefox < 66.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 66.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2019-07 advisory. - A latent vulnerability exists in the Prio library where data may be read from uninitialized memory for some...

9.8CVSS7.5AI score0.38066EPSS
Exploits13References22
Tenable Nessus
Tenable Nessusadded 2019/03/19 12:0 a.m.50 views

Mozilla Firefox < 66.0

The version of Firefox installed on the remote Windows host is prior to 66.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2019-07 advisory. - A latent vulnerability exists in the Prio library where data may be read from uninitialized memory for some functions,...

9.8CVSS7.5AI score0.38066EPSS
Exploits13References22
Mozilla
Mozillaadded 2019/03/19 12:0 a.m.168 views

Security vulnerabilities fixed in Firefox 66 — Mozilla

A use-after-free vulnerability can occur when a raw pointer to a DOM element on a page is obtained using JavaScript and the element is then removed while still in use. This results in a potentially exploitable crash. The type inference system allows the compilation of functions that can cause typ...

9.8CVSS0.38066EPSS
Exploits11References24Affected Software1
NVD
NVDadded 2019/02/05 9:29 p.m.14 views

CVE-2018-18505

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

10CVSS9.2AI score0.02044EPSS
Exploits0References18
Debian CVE
Debian CVEadded 2019/02/05 9:0 p.m.224 views

CVE-2018-18505

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

10CVSS9.9AI score0.02044EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2019/02/04 8:45 p.m.2 views

Mozilla: Privilege escalation through IPC channel messages

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

10CVSS7.3AI score0.02044EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2019/02/04 8:45 p.m.2 views

Mozilla: Privilege escalation through IPC channel messages

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

10CVSS7.3AI score0.02044EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2019/01/30 6:6 p.m.1 views

Mozilla: Privilege escalation through IPC channel messages

No description is available for this CVE...

10CVSS7.3AI score0.02044EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2019/01/30 5:44 p.m.4 views

Mozilla: Privilege escalation through IPC channel messages

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

10CVSS7.3AI score0.02044EPSS
Exploits0References5
OSV
OSVadded 2019/01/30 12:0 a.m.1 views

UBUNTU-CVE-2018-18505

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

10CVSS7.3AI score0.02044EPSS
Exploits0References6
CNVD
CNVDadded 2018/12/21 12:0 a.m.2 views

IBM Notes and Domino Privilege Permission and Access Control Vulnerabilities

IBM Notes and Domino are both collaborative office software from the American company IBM. The software has office features such as e-mail, calendar, and scheduling. A privilege permission and access control vulnerability exists in the Notes System Diagnostic NSD service in IBM Notes and Domino o...

8.4CVSS7.2AI score0.00033EPSS
Exploits0References1
OSV
OSVadded 2018/11/14 3:29 p.m.1 views

UBUNTU-CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS7.3AI score0.00505EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2018/11/14 3:29 p.m.22 views

CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS7.2AI score0.00505EPSS
Exploits1References2
NVD
NVDadded 2018/11/14 3:29 p.m.13 views

CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS7.8AI score0.00505EPSS
Exploits1References5
OSV
OSVadded 2018/11/14 3:29 p.m.2 views

CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS7.4AI score
Exploits0References5
Prion
Prionadded 2018/11/14 3:29 p.m.20 views

Design/Logic Flaw

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

6.8CVSS7.7AI score0.00505EPSS
Exploits1References5Affected Software5
Debian CVE
Debian CVEadded 2018/11/14 3:0 p.m.25 views

CVE-2018-6057

Removed by vendor...

8.8CVSS9.3AI score0.00505EPSS
Exploits1
Cvelist
Cvelistadded 2018/11/14 3:0 p.m.19 views

CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

7.7AI score0.00505EPSS
Exploits1References5
Rows per page
Query Builder