Lucene search
K

3832 matches found

OSV
OSV
added 2018/06/11 9:29 p.m.3 views

CVE-2017-5413

A segmentation fault can occur during some bidirectional layout operations. This vulnerability affects Firefox 52 and Thunderbird 52...

9.8CVSS7.3AI score0.01893EPSS
Exploits1References5
OSV
OSV
added 2018/06/11 9:29 p.m.1 views

DEBIAN-CVE-2017-5375

JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird 45.7, Firefox ESR 45.7, and Firefox 51...

9.8CVSS8.8AI score0.33434EPSS
Exploits13References1
Prion
Prion
added 2018/06/11 9:29 p.m.16 views

Design/Logic Flaw

An out-of-bounds read during the processing of glyph widths during text layout. This results in a potentially exploitable crash and could allow an attacker to read otherwise inaccessible memory. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and Firefox 53...

6.4CVSS8.7AI score0.17526EPSS
Exploits4References12Affected Software10
Prion
Prion
added 2018/06/11 9:29 p.m.18 views

Design/Logic Flaw

A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox 54, Firefox ESR 52.2, and Thunderbird...

7.5CVSS8.9AI score0.02665EPSS
Exploits0References10Affected Software10
Prion
Prion
added 2018/06/11 9:29 p.m.16 views

Design/Logic Flaw

A segmentation fault can occur during some bidirectional layout operations. This vulnerability affects Firefox 52 and Thunderbird 52...

7.5CVSS8.6AI score0.01893EPSS
Exploits1References5Affected Software2
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.26 views

CVE-2017-5472

A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox 54, Firefox ESR 52.2, and Thunderbird...

8.2AI score0.02665EPSS
Exploits0References10
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.20 views

CVE-2017-5447

An out-of-bounds read during the processing of glyph widths during text layout. This results in a potentially exploitable crash and could allow an attacker to read otherwise inaccessible memory. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and Firefox 53...

8.1AI score0.17526EPSS
Exploits4References12
CVE
CVE
added 2018/06/11 9:0 p.m.165 views

CVE-2017-5449

CVE-2017-5449 affects Mozilla Firefox (and Thunderbird) components where a crash can be triggered during layout/manipulation of bidirectional Unicode text in concert with CSS animations. Public records in connected advisories indicate affected versions: Thunderbird < 52.1, Firefox ESR < 52....

7.5CVSS8.1AI score0.02598EPSS
Exploits0References9Affected Software6
CVE
CVE
added 2018/06/11 9:0 p.m.131 views

CVE-2017-5472

CVE-2017-5472 is a use-after-free in Mozilla's frameloader during CSS layout regeneration, leading to potential crash. Concrete details in connected docs show impact on Firefox versions <54, Firefox ESR <52.2, and Thunderbird

9.8CVSS8.1AI score0.02665EPSS
Exploits0References10Affected Software1
Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.29 views

CVE-2017-5472

A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potentially exploitable crash. This vulnerability affects Firefox 54, Firefox ESR 52.2, and Thunderbird...

9.8CVSS9.6AI score0.02665EPSS
Exploits0
Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.33 views

CVE-2017-5447

An out-of-bounds read during the processing of glyph widths during text layout. This results in a potentially exploitable crash and could allow an attacker to read otherwise inaccessible memory. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and Firefox 53...

9.1CVSS9.7AI score0.17526EPSS
Exploits4
Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.32 views

CVE-2017-7828

A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. This results in a potentially exploitable crash during these operations. This vulnerability affects Firefox 57, Firefox ESR 52.5, and Thunderbird 52.5...

9.8CVSS10AI score0.07439EPSS
Exploits0
Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.33 views

CVE-2017-5413

A segmentation fault can occur during some bidirectional layout operations. This vulnerability affects Firefox 52 and Thunderbird 52...

9.8CVSS9.5AI score0.01893EPSS
Exploits1
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.18 views

CVE-2017-5413

A segmentation fault can occur during some bidirectional layout operations. This vulnerability affects Firefox 52 and Thunderbird 52...

7.7AI score0.01893EPSS
Exploits1References5
CVE
CVE
added 2018/06/11 9:0 p.m.131 views

CVE-2017-5413

CVE-2017-5413 : A segmentation fault can occur during bidirectional layout operations in Mozilla Firefox and Thunderbird. Affected products include Firefox and Thunderbird versions earlier than 52 (Firefox 52.x, Thunderbird 52.x) with the root cause described as a crash in bidirectional processin...

9.8CVSS7.6AI score0.01893EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2018/06/11 9:0 p.m.192 views

CVE-2017-5447

CVE-2017-5447 is an out-of-bounds read in glyph widths processing during text layout that can cause a crash and potentially expose memory. Affected products include Mozilla Thunderbird (<52.1) and Mozilla Firefox/Firefox ESR (ESR <52.1; Firefox

9.1CVSS7.9AI score0.17526EPSS
Exploits4References12Affected Software1
Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.22 views

CVE-2017-7801

A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox...

9.8CVSS10AI score0.02677EPSS
Exploits1
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.19 views

CVE-2017-7801

A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox...

8.5AI score0.02677EPSS
Exploits1References11
NVD
NVD
added 2018/06/08 6:29 p.m.23 views

CVE-2018-4171

An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Bluetooth" component. It allows attackers to obtain sensitive kernel memory-layout information via a crafted app that leverages device properties...

7.1CVSS3.9AI score0.01013EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/06/08 6:0 p.m.25 views

CVE-2018-4171

An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Bluetooth" component. It allows attackers to obtain sensitive kernel memory-layout information via a crafted app that leverages device properties...

4.7AI score0.01013EPSS
Exploits0References2
Rows per page
Query Builder