Lucene search
K

19537 matches found

RedhatCVE
RedhatCVE
added 2026/04/21 10:11 a.m.5 views

CVE-2026-35587

A flaw was found in Glances, an open-source system monitoring tool. An attacker with the ability to modify the Glances configuration can exploit a Server-Side Request Forgery SSRF vulnerability. This flaw, caused by improper validation of the publicapi configuration parameter, allows the attacker...

8.8CVSS5.9AI score0.00396EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.17 views

Mozilla -- Mitigation bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2025067 reports: Mitigation bypass in the DOM: Security component...

9.8CVSS5.2AI score0.00309EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.6 views

Mozilla -- Mitigation bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2021666 reports: Mitigation bypass in the File Handling component...

6.5CVSS5.2AI score0.00191EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.5 views

Mozilla -- Mitigation bypass

https://bugzilla.mozilla.org/showbug.cgi?id=1880429 reports: Mitigation bypass in the DOM: postMessage component...

6.5CVSS5.2AI score0.00189EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.8 views

Mozilla -- Mitigation bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2016923 reports: Mitigation bypass in the Networking: Cookies component...

9.8CVSS5.2AI score0.00279EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.6 views

Mozilla -- Mitigation bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2023615 reports: Mitigation bypass in the Networking: Cookies component...

9.8CVSS5.2AI score0.00285EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.6 views

Mozilla -- Mitigation bypass

https://bugzilla.mozilla.org/showbug.cgi?id=2016915 reports: Mitigation bypass in the DOM: Security component...

5.4CVSS5.1AI score0.00153EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.8 views

PT-2026-33957

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Firefox ESR versions prior to 140.10 Thunderbird versions prior to 150 Thunderbird versions prior to 140.10 Description A mitigation bypass exists within the DOM Security component. Recommendations Update to versi...

10CVSS5AI score0.00309EPSS
Exploits0References197
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.5 views

PT-2026-33949

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Firefox ESR versions prior to 140.10 Thunderbird versions prior to 150 Thunderbird versions prior to 140.10 Description A mitigation bypass exists within the File Handling component. Recommendations Update Firefox...

6.5CVSS5AI score0.00191EPSS
Exploits0References199
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.5 views

PT-2026-33954

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Thunderbird versions prior to 150 Description A mitigation bypass exists in the Networking: Cookies component. Recommendations Update Firefox to version 150. Update Thunderbird to version 150...

9.8CVSS5.1AI score0.04938EPSS
Exploits1References47
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.8 views

PT-2026-33941

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Thunderbird versions prior to 150 Description A mitigation bypass exists in the DOM postMessage component. Recommendations Update to version 150 or later...

9.8CVSS5.1AI score0.00513EPSS
Exploits0References47
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.5 views

PT-2026-33946

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Thunderbird versions prior to 150 Description A mitigation bypass exists in the Networking: Cookies component. Recommendations Update to version 150 for Firefox. Update to version 150 for Thunderbird...

9.8CVSS5.1AI score0.04938EPSS
Exploits1References47
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.13 views

PT-2026-33942

Name of the Vulnerable Software and Affected Versions Firefox for Android versions prior to 150 Description A mitigation bypass exists in the software. Recommendations Update to version 150...

9.8CVSS5.1AI score0.04938EPSS
Exploits1References46
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.4 views

PT-2026-33960

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Thunderbird versions prior to 150 Description A mitigation bypass exists within the DOM Security component. Recommendations Update to version 150 for Firefox. Update to version 150 for Thunderbird...

9.8CVSS5AI score0.04938EPSS
Exploits1References47
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.10 views

Mozilla Firefox和Mozilla Thunderbird 安全漏洞

Mozilla Firefox and Mozilla Thunderbird are both products of the American Mozilla Foundation. Mozilla Firefox is an open-source web browser. Mozilla Thunderbird is an email client software that emerged independently from the Mozilla Application Suite. This software supports IMAP and POP email...

9.8CVSS5.8AI score0.00285EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/20 2:24 p.m.5 views

CVE-2026-35554

A flaw was found in the Apache Kafka Java producer client. A race condition in the client's buffer pool management can cause messages to be silently delivered to incorrect topics. This occurs when a message batch expires while its network request is still active, leading to premature buffer...

8.7CVSS5.6AI score0.00328EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/20 1:54 p.m.4 views

CVE-2026-40338

A flaw was found in libgphoto2, a library for camera access and control. An out-of-bounds read vulnerability exists in the ptpunpackSonyDPD function. This occurs when the function attempts to read a 2-byte enumeration count without first verifying that sufficient data remains in the buffer. A loc...

6.1CVSS5.7AI score0.00198EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/20 1:39 p.m.8 views

CVE-2026-40477

A flaw was found in Thymeleaf, a server-side Java template engine. An unauthenticated remote attacker can exploit a security bypass vulnerability in the expression execution mechanisms. By providing unvalidated user input directly to the template engine, the attacker can bypass the library's...

9CVSS5.8AI score0.00862EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/20 1:13 p.m.4 views

CVE-2026-34232

A flaw was found in Firebird, an open-source relational database management system. The xdrstatusvector function, responsible for decoding server responses, does not properly handle a specific data type iscargcstring within an opresponse packet. An unauthenticated attacker can exploit this...

7.5CVSS5.8AI score0.00466EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/04/20 1:8 p.m.6 views

CVE-2026-35215

A flaw was found in Firebird. In the sdldesc function, a division by zero vulnerability exists due to improper validation of the length of a decoded SDL descriptor from a slice packet. An unauthenticated attacker can exploit this by sending a specially crafted slice packet, leading to a server...

7.5CVSS5.8AI score0.00466EPSS
Exploits1References2
Rows per page
Query Builder