4441 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-12387
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes...
Google Chrome Competitive Conditions Issue Vulnerability (CNVD-2025-24504)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a Competitive Condition Issue vulnerability that is due to a competitive condition in V8. An attacker can exploit this vulnerability to execute arbitrary code on the system...
Linux Distros Unpatched Vulnerability : CVE-2025-49710
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow was present in OrderedHashTable used by the JavaScript engine. This vulnerability was fixed in Firefox 139.0.4. CVE-2025-49710 Note that...
Linux Distros Unpatched Vulnerability : CVE-2025-8033
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability was fixed in...
Microsoft Edge (Chromium) < 139.0.3405.102 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 139.0.3405.102. It is, therefore, affected by multiple vulnerabilities as referenced in the August 15, 2025 advisory. - Out of bounds write in ANGLE in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to...
AlmaLinux 8 : thunderbird (ALSA-2025:13676)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:13676 advisory. firefox: thunderbird: Large branch table could lead to truncated instruction CVE-2025-8028 firefox: thunderbird: Memory safety bugs CVE-2025-8035 firefox...
CVE-2025-8880
CVE-2025-8880 describes a race in V8 within Google Chrome before 139.0.7258.127, allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Connected documents corroborate: Chromium/Chrome security notes identify this race in V8 as a high-severity issue and Chr...
CVE-2025-8880
Race in V8 in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2025-8880
Race in V8 in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2025-8880
Race in V8 in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
Google Chrome < 139.0.7258.127 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 139.0.7258.127. It is, therefore, affected by multiple vulnerabilities as referenced in the 202508stable-channel-update-for-desktop12 advisory. - Use after free in Aura in Google Chrome prior to 139.0.7258.127 allowed a...
RHEL 8 : thunderbird (RHSA-2025:13650)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:13650 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to...
RHEL 8 : thunderbird (RHSA-2025:13645)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:13645 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to...
RHEL 9 : thunderbird (RHSA-2025:13648)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:13648 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to...
Google Chrome < 139.0.7258.127 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 139.0.7258.127. It is, therefore, affected by multiple vulnerabilities as referenced in the 202508stable-channel-update-for-desktop12 advisory. - Use after free in Aura in Google Chrome prior to 139.0.7258.127 allowed a...
RHEL 8 : thunderbird (RHSA-2025:13651)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:13651 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to...
Google Chrome 竞争条件问题漏洞
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a Competitive Condition Issue vulnerability that is due to a competitive condition in V8. An attacker can exploit this vulnerability to execute arbitrary code on the system...
Important: thunderbird security update
Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to truncated instruction CVE-2025-8028 firefox: thunderbird: Memory safety bugs CVE-2025-8035 firefox: thunderbird: Incorrect URL stripping in CSP reports CVE-2025-80...
chromium -- multiple security fixes
Chrome Releases reports: This update includes 6 security fixes: 432035817 High CVE-2025-8879: Heap buffer overflow in libaom. Reported by Anonymous on 2025-07-15 433533359 High CVE-2025-8880: Race in V8. Reported by Seunghyun Lee @0x10n on 2025-07-23 435139154 High CVE-2025-8901: Out of bounds...
firefox: thunderbird: Incorrect JavaScript state machine for generators
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...