CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

528 matches found

NVD•added 2025/10/28 2:15 p.m.•3 views

CVE-2025-12380

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox. This vulnerability was fixed in Firefox 144.0.2...

9.8CVSS0.0006EPSS

Exploits0References2

FreeBSD•added 2025/10/28 12:0 a.m.•6 views

Firefox -- use-after-free in the GPU or browser process

https://bugzilla.mozilla.org/showbug.cgi?id=1993113 reports: Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox...

9.8CVSS6.9AI score0.0006EPSS

Exploits0References1

RedHat Linux•added 2025/10/20 2:25 a.m.•3 views

thunderbird: firefox: Cross-process information leaked due to malicious IPC messages

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS7.3AI score0.00106EPSS

Exploits0References6

Tenable Nessus•added 2025/10/20 12:0 a.m.•1 views

FreeBSD : Mozilla -- Memory disclosure (f7047dfc-ad02-11f0-b2aa-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f7047dfc-ad02-11f0-b2aa-b42e991fc52e advisory. [email protected] reports: A compromised web process using malicious IPC messages could have caused...

9.8CVSS8.2AI score0.00106EPSS

Exploits0References3

RedHat Linux•added 2025/10/15 4:41 p.m.•2 views

thunderbird: firefox: Cross-process information leaked due to malicious IPC messages

9.8CVSS7.3AI score0.00106EPSS

Exploits0References6

OSV•added 2025/10/14 1:15 p.m.•1 views

DEBIAN-CVE-2025-11710

A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process. This vulnerability was fixed in Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS8.4AI score0.00106EPSS

Exploits0References1

AlpineLinux•added 2025/10/14 1:15 p.m.•1 views

CVE-2025-11710

A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process. This vulnerability affects Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS6AI score0.00106EPSS

Exploits0References8

FreeBSD•added 2025/10/14 12:0 a.m.•5 views

Mozilla -- Memory disclosure

[email protected] reports: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS6.9AI score0.00106EPSS

Exploits0References1

Positive Technologies•added 2025/10/14 12:0 a.m.•1 views

PT-2025-41898

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 144 Firefox ESR versions prior to 115.29 Firefox ESR versions prior to 140.4 Thunderbird versions prior to 144 Thunderbird versions prior to 140.4 Description A compromised web process utilizing malicious Inter-Proces...

10CVSS8.7AI score0.19171EPSS

Exploits2References316

Packet Storm News•added 2025/10/11 12:0 a.m.•2 views

Modern IOS Security Features -- a Deep Dive into SPTM, TXM, and Exclaves

The XNU kernel is the basis of Apple's operating systems. Although labeled as a hybrid kernel, it is found to generally operate in a monolithic manner by defining a single privileged trust zone in which all system functionality resides. This has security implications, as a kernel compromise has...

6.6AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-24827

Malware in sbrugna...

7.3CVSS7.3AI score0.0025EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-3754

Malware in sbrugna...

6.8CVSS5.8AI score0.01178EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-1862

Malware in sbrugna...

6.4CVSS6.4AI score0.00763EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-24705

Malware in sbrugna...

5.5CVSS5.9AI score0.00062EPSS

Exploits4References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-2542

Malware in sbrugna...

8.1CVSS8AI score0.00358EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-24704

Malware in sbrugna...

7.8CVSS6.8AI score0.04462EPSS

Exploits5References4

RedhatCVE•added 2025/10/06 10:8 p.m.•1 views

CVE-2025-10751

MacForge contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root.This issue affects MacForge: 1.2.0 Beta 1...

8.5CVSS7.1AI score0.00019EPSS

Exploits1References1

Vulnrichment•added 2025/10/04 12:37 a.m.•2 views

CVE-2025-10751 MacForge 1.2.0 Beta 1 - Local Privilege Escalation

MacForge contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root.This issue affects MacForge: 1.2.0 Beta 1...

8.5CVSS6.7AI score0.00019EPSS

Exploits1References3

CNNVD•added 2025/10/04 12:0 a.m.•1 views

MacForge 安全漏洞

MacForge is an open source plugin for macEnhance. A security vulnerability exists in MacForge version 1.2.0 Beta 1, which stems from an insecure XPC service that could lead to elevated privileges...

8.5CVSS6.7AI score0.00019EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-44585

Malicious code in bioql PyPI...

3.3CVSS6.5AI score0.00088EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by