Lucene search
K

14 matches found

AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.1 views

Astra Linux – Vulnerability in Firefox

A compromised web process that used malicious IPC messages could cause the privileged browser process to reveal blocks of its memory to the compromised process. This vulnerability was fixed in Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS7.3AI score0.00385EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/11/12 1:48 a.m.2 views

thunderbird: firefox: Cross-process information leaked due to malicious IPC messages

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS7.3AI score0.00385EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/12 1:23 a.m.9 views

thunderbird: firefox: Cross-process information leaked due to malicious IPC messages

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS7.3AI score0.00385EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/10/20 2:25 a.m.4 views

thunderbird: firefox: Cross-process information leaked due to malicious IPC messages

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS7.3AI score0.00385EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/10/15 4:41 p.m.4 views

thunderbird: firefox: Cross-process information leaked due to malicious IPC messages

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS7.3AI score0.00385EPSS
Exploits0References6
OSV
OSV
added 2025/10/14 1:15 p.m.2 views

DEBIAN-CVE-2025-11710

A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process. This vulnerability was fixed in Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS8.4AI score0.00385EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/10/14 12:0 a.m.6 views

Mozilla -- Memory disclosure

[email protected] reports: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS6.9AI score0.00385EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-21947

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix type confusion via race condition when using ipcmsgsendrequest req-handle is allocated using ksmbdacquireid&ipcida, based on idaalloc. req-handle fro...

8.1CVSS6.6AI score0.00328EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/05/28 8:15 a.m.2 views

CVE-2025-25251

An Incorrect Authorization vulnerability CWE-863 in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages...

7.8CVSS7.4AI score0.00173EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2022/12/15 4:19 p.m.2 views

Mozilla: Arbitrary file read from a compromised content process

The Mozilla Foundation Security Advisory describes this flaw as: An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages. This bug only affects Firefox for Linux. Other operating systems are unaffected...

8.6CVSS7.5AI score0.00772EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/12/15 3:57 p.m.3 views

Mozilla: Arbitrary file read from a compromised content process

The Mozilla Foundation Security Advisory describes this flaw as: An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages. This bug only affects Firefox for Linux. Other operating systems are unaffected...

8.6CVSS7.5AI score0.00772EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/10/06 12:0 a.m.6 views

Cisco Anyconnect Secure Mobility Client 竞争条件问题漏洞

Cisco Anyconnect Secure Mobility Client is a VPN client software for secure connectivity from Cisco. The Cisco AnyConnect Secure Mobility Client suffers from a Competitive Condition Issue vulnerability that arises from a competitive condition during signature verification of shared library files...

7CVSS7.6AI score0.00171EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.3 views

The vulnerability of the process-interaction channel of the Cisco AnyConnect Secure Mobility Client cryptographic security device allows a intruder to modify VPN profile files.

The vulnerability of the process-interaction channel of the Cisco AnyConnect Secure Mobility Client cryptographic security device is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to modify VPN profile files by sending specially created IPC...

4.7CVSS5.9AI score0.00214EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2015/08/19 12:0 a.m.3 views

Apple OS X 'blued' buffer overflow vulnerability

Apple OS X is a BSD-based operating system distributed by Apple. A buffer overflow vulnerability exists in 'blued' when Apple OS X handles XPC messages, which allows a local user to exploit the vulnerability to execute arbitrary code...

7.2CVSS7.3AI score0.00398EPSS
Exploits0References1
Rows per page
Query Builder