Lucene search
K

4514 matches found

AlpineLinux
AlpineLinux
added 2025/07/22 9:15 p.m.1 views

CVE-2025-8033

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability affects Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

6.5CVSS6.4AI score0.00351EPSS
Exploits0References9
OSV
OSV
added 2025/07/22 9:15 p.m.1 views

DEBIAN-CVE-2025-8033

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

6.5CVSS6.4AI score0.00351EPSS
Exploits0References1
OSV
OSV
added 2025/07/22 9:15 p.m.5 views

CVE-2025-8033

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability affects Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

6.5CVSS5.1AI score
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/07/22 9:15 p.m.3 views

CVE-2025-8035

Memory safety bugs present in Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run...

8.8CVSS7.3AI score0.00326EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/07/22 9:15 p.m.3 views

CVE-2025-8027

On 64-bit platforms IonMonkey-JIT only wrote 32 bits of the 64-bit return value space on the stack. Baseline-JIT, however, read the entire 64 bits. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and...

6.5CVSS6.6AI score0.00351EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2025/07/22 9:15 p.m.2 views

CVE-2025-8029

Thunderbird executed javascript: URLs when used in object and embed tags. This vulnerability was fixed in Firefox 141, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

8.1CVSS7.2AI score0.00306EPSS
Exploits0References12
OSV
OSV
added 2025/07/22 9:15 p.m.3 views

UBUNTU-CVE-2025-8033

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

6.5CVSS6.6AI score0.00351EPSS
Exploits0References14
ATTACKERKB
ATTACKERKB
added 2025/07/22 9:11 p.m.3 views

CVE-2025-8010

Type Confusion in V8 in Google Chrome prior to 138.0.7204.168 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.0025EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/07/22 8:49 p.m.3 views

CVE-2025-8033

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

6.5CVSS5.8AI score0.00351EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/07/22 8:49 p.m.5 views

CVE-2025-8033 Incorrect JavaScript state machine for generators

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

6.6AI score0.00351EPSS
Exploits0References8
CVE
CVE
added 2025/07/22 8:49 p.m.76 views

CVE-2025-8033

The CVE-2025-8033 issue is a memory-safety bug in Mozilla’s JavaScript engine where closing generators could be resumed, causing a null pointer dereference. Affected products include Firefox and Thunderbird forks across multiple release lines (Firefox < 141, ESR tracks <115.26, <128.13, ...

6.5CVSS6.6AI score0.00351EPSS
Exploits0References9Affected Software2
Cvelist
Cvelist
added 2025/07/22 8:49 p.m.10 views

CVE-2025-8033 Incorrect JavaScript state machine for generators

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

0.00351EPSS
Exploits0References8
Mozilla
Mozilla
added 2025/07/22 12:0 a.m.10 views

Security Vulnerabilities fixed in Firefox ESR 140.1 — Mozilla

On 64-bit platforms IonMonkey-JIT only wrote 32 bits of the 64-bit return value space on the stack. Baseline-JIT, however, read the entire 64 bits. On arm64, a WASM brtable instruction with a lot of entries could lead to the label being too far from the instruction causing truncation and incorrec...

9.8CVSS7.8AI score0.00472EPSS
Exploits0References14Affected Software1
Mozilla
Mozilla
added 2025/07/22 12:0 a.m.34 views

Security Vulnerabilities fixed in Firefox ESR 115.26 — Mozilla

On 64-bit platforms IonMonkey-JIT only wrote 32 bits of the 64-bit return value space on the stack. Baseline-JIT, however, read the entire 64 bits. On arm64, a WASM brtable instruction with a lot of entries could lead to the label being too far from the instruction causing truncation and incorrec...

9.8CVSS7.8AI score0.00472EPSS
Exploits0References4Affected Software1
Mozilla
Mozilla
added 2025/07/22 12:0 a.m.14 views

Security Vulnerabilities fixed in Thunderbird 141 — Mozilla

On 64-bit platforms IonMonkey-JIT only wrote 32 bits of the 64-bit return value space on the stack. Baseline-JIT, however, read the entire 64 bits. On arm64, a WASM brtable instruction with a lot of entries could lead to the label being too far from the instruction causing truncation and incorrec...

9.8CVSS7.3AI score0.00472EPSS
Exploits0References15Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.8 views

Mozilla Firefox ESR < 115.26

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.26. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-57 advisory. - Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox E...

9.8CVSS8.6AI score0.00472EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.3 views

Mozilla Firefox ESR < 115.26

The version of Firefox ESR installed on the remote Windows host is prior to 115.26. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-57 advisory. - Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0,...

9.8CVSS8.6AI score0.00472EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2025/07/22 12:0 a.m.7 views

Mozilla -- nullptr dereference

[email protected] reports: The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref...

6.5CVSS6.6AI score0.00351EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/22 12:0 a.m.4 views

PT-2025-30482

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 141 Firefox ESR versions prior to 115.26 Firefox ESR versions prior to 128.13 Firefox ESR versions prior to 140.1 Thunderbird versions prior to 141 Thunderbird versions prior to 128.13 Thunderbird versions prior to...

9.8CVSS7.7AI score0.09348EPSS
Exploits2References274
CNVD
CNVD
added 2025/07/21 12:0 a.m.2 views

Google Chrome V8 Integer Overflow Vulnerability

Google Chrome is a web browser developed by Google. Google Chrome V8 suffers from an integer overflow vulnerability that originates from accessing a resource using an incompatible type, which can be exploited by a remote attacker to submit a special WEB request that induces the user to parse it,...

8.8CVSS7.7AI score0.0863EPSS
Exploits0References1
Rows per page
Query Builder