Lucene search
K

6 matches found

OSV
OSV
added 2023/06/02 5:15 p.m.0 views

CVE-2023-28160

When following a redirect to a publicly accessible web extension file, the URL may have been translated to the actual local path, leaking potentially sensitive information. This vulnerability affects Firefox 111...

6.5CVSS7AI score0.00508EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/03/15 12:0 a.m.30 views

CVE-2023-28160

When following a redirect to a publicly accessible web extension file, the URL may have been translated to the actual local path, leaking potentially sensitive information. This vulnerability affects Firefox 111...

6.5CVSS6.7AI score0.00508EPSS
Exploits0References3
OSV
OSV
added 2017/12/29 12:0 a.m.6 views

UBUNTU-CVE-2017-7847

Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird 52.5.2...

4.3CVSS6.7AI score0.01648EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/12/26 12:0 a.m.35 views

openSUSE Security Update : Mozilla Thunderbird (openSUSE-2017-1419)

This update for Mozilla Thunderbird to version 52.5.2 fixes the following vulnerabilities : - CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin bsc1074043 - CVE-2017-7847: Local path string can be leaked from RSS feed bsc1074044 - CVE-2017-7848: RSS Feed vulnerable to new line...

8.8CVSS7AI score0.02008EPSS
Exploits1References8
OPENSUSE Linux
OPENSUSE Linux
added 2017/12/25 3:7 a.m.81 views

Security update for Mozilla Thunderbird (important)

This update for Mozilla Thunderbird to version 52.5.2 fixes the following vulnerabilities: - CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin bsc1074043 - CVE-2017-7847: Local path string can be leaked from RSS feed bsc1074044 - CVE-2017-7848: RSS Feed vulnerable to new line...

1.9AI score0.02008EPSS
Exploits1References4
FreeBSD
FreeBSD
added 2017/12/22 12:0 a.m.58 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2017-7845: Buffer overflow when drawing and validating elements with ANGLE library using Direct 3D 9 CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin CVE-2017-7847: Local path string can be leaked from RSS feed CVE-2017-7848: RSS Feed vulnerable to...

9.3CVSS2.5AI score0.03215EPSS
Exploits1References1
Rows per page
Query Builder