Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox versions prior to 146.0.1, which stems from a memory security issue that could lead to memory corruption and execution of arbitrary code...

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A buffer error vulnerability exists in versions prior to Mozilla Firefox 146, which stems from a memory security issue that could lead to memory corruption and execution of arbitrary code...

EUVD-2018-6255

Malware in sbrugna...

EUVD-2019-2745

Malware in sbrugna...

EUVD-2022-37999

Malicious code in bioql PyPI...

TencentOS Server 4: libssh2 (TSSA-2025:0116)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0116 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

CVE-2024-4640

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to missing bounds checking on buffer operations. An attacker could write past the boundaries of allocated buffer regions in memory, causing a program crash...

Code execution vulnerability in multiple Mozilla products (CNVD-2024-46830)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in several Mozilla products, which...

Mozilla Firefox Code Execution Vulnerability (CNVD-2024-36730)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a code execution vulnerability caused by a memory security flaw in the browser engine. An attacker could exploit this vulnerability to execute arbitrary code on a system or...

RUSTSEC-2021-0015 `Sectors::get` accesses unclaimed/uninitialized memory

Affected versions of this crate arbitrarily calls Vec::setlen to increase length of a vector without claiming more memory for the vector. Affected versions of this crate also calls user-provided Read on the uninitialized memory of the vector that was extended with Vec::setlen. This can overwrite...

CVE-2006-2708

Secure Elements Class 5 AVR client aka C5 EVM before 2.8.1 allows remote attackers to read portions of process memory via a modified size for 1 EMGETCEPARAMETER and 2 EMSETCEPARAMETER messages, which leads to a buffer overflow probably an over-read...