Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-5905

Malware in sbrugna...

1.9CVSS6.4AI score0.00258EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8392

Malware in sbrugna...

6.9CVSS6.5AI score0.00198EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-4514

Malware in sbrugna...

4.3CVSS6.4AI score0.00758EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-2834

Malware in sbrugna...

4.3CVSS6.4AI score0.00806EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8391

Malware in sbrugna...

6.1CVSS6.3AI score0.00663EPSS
Exploits0References3
Prion
Prion
added 2016/01/09 2:59 a.m.20 views

Race condition

Race condition in the lockscreen feature in Mozilla Firefox OS before 2.5 allows physically proximate attackers to bypass an intended passcode requirement via unspecified vectors...

6.9CVSS7AI score0.00198EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2016/01/09 2:59 a.m.22 views

Authentication flaw

The lockscreen feature in Mozilla Firefox OS before 2.5 does not properly restrict failed authentication attempts, which makes it easier for physically proximate attackers to obtain access by entering many passcode guesses...

2.1CVSS7.1AI score0.00315EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/01/09 2:0 a.m.25 views

CVE-2015-8510

Cross-site scripting XSS vulnerability in the internationalization feature in the default homescreen app in Mozilla Firefox OS before 2.5 allows user-assisted remote attackers to inject arbitrary web script or HTML via a crafted web site that is mishandled during "Add to home screen" bookmarking...

5.9AI score0.00663EPSS
Exploits0References2
CVE
CVE
added 2016/01/09 2:0 a.m.58 views

CVE-2015-8512

Summary (CVE-2015-8512) : Mozilla Firefox OS prior to version 2.5 contains a vulnerability in the lockscreen logic that does not properly restrict failed authentication attempts, enabling physically proximate attackers to gain access by brute-forcing passcodes. The issue is tied to the lockscreen...

4.6CVSS4.6AI score0.00315EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2016/01/09 2:0 a.m.56 views

CVE-2015-8511

CVE-2015-8511 is a race-condition vulnerability in Mozilla Firefox OS lockscreen prior to version 2.5 that enables physically proximate attackers to bypass the device passcode. The issue is described in multiple sources as a lockscreen bypass via race conditions with unspecified vectors. Affected...

6.9CVSS6.2AI score0.00198EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2016/01/09 2:0 a.m.56 views

CVE-2015-8510

The vulnerability CVE-2015-8510 affects Mozilla Firefox OS (default homescreen app) via the internationalization feature. A cross-site scripting flaw exists in the Add to home screen bookmarking flow, where a crafted website mishandled during bookmarking can execute arbitrary script. Exploitation...

6.1CVSS5.8AI score0.00663EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/01/09 2:0 a.m.29 views

CVE-2015-8511

Race condition in the lockscreen feature in Mozilla Firefox OS before 2.5 allows physically proximate attackers to bypass an intended passcode requirement via unspecified vectors...

6.2AI score0.00198EPSS
Exploits0References2
NVD
NVD
added 2015/08/08 12:59 a.m.30 views

CVE-2015-5962

Integer signedness error in the SharedBufferManagerParent::RecvAllocateGrallocBuffer function in the buffer-management implementation in the graphics layer in Mozilla Firefox OS before 2.2 might allow attackers to cause a denial of service memory corruption via a negative value of a size paramete...

5CVSS6.4AI score0.01104EPSS
Exploits0References3
Prion
Prion
added 2015/08/08 12:59 a.m.12 views

Design/Logic Flaw

The COPPA error page in the Accounts setup dialog in Mozilla Firefox OS before 2.2 embeds content from an external web server URL into the System process, which allows man-in-the-middle attackers to bypass intended access restrictions by spoofing that server...

3.3CVSS6.9AI score0.00377EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2015/08/08 12:59 a.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Search app in Gaia in Mozilla Firefox OS before 2.2 allows remote attackers to inject arbitrary HTML via a crafted search link that is mishandled after re-opening the browser or opening the tab view...

4.3CVSS6.1AI score0.00806EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/08/08 12:59 a.m.32 views

Integer overflow

Integer signedness error in the SharedBufferManagerParent::RecvAllocateGrallocBuffer function in the buffer-management implementation in the graphics layer in Mozilla Firefox OS before 2.2 might allow attackers to cause a denial of service memory corruption via a negative value of a size paramete...

5CVSS7AI score0.01104EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2015/08/08 12:59 a.m.19 views

CVE-2015-2744

Cross-site scripting XSS vulnerability in the Search app in Gaia in Mozilla Firefox OS before 2.2 allows remote attackers to inject arbitrary HTML via a crafted search link that is mishandled after re-opening the browser or opening the tab view...

4.3CVSS5.6AI score0.00806EPSS
Exploits0References2
Prion
Prion
added 2015/08/08 12:59 a.m.27 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Search app in Gaia in Mozilla Firefox OS before 2.2 allow remote attackers to inject arbitrary HTML via the 1 name or 2 title field in card content associated with a search link that is mishandled after a HOME button press or a Show Windows...

4.3CVSS6.1AI score0.01444EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2015/08/08 12:0 a.m.44 views

CVE-2015-2744

CVE-2015-2744 describes a cross-site scripting (XSS) vulnerability in the Gaia Search app of Mozilla Firefox OS prior to 2.2. The issue arises from a crafted search link that, when the browser is re-opened or the tab view is accessed, allows injection of arbitrary HTML due to mishandling of the s...

4.3CVSS5.7AI score0.00806EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/08/08 12:0 a.m.25 views

CVE-2015-5962

Integer signedness error in the SharedBufferManagerParent::RecvAllocateGrallocBuffer function in the buffer-management implementation in the graphics layer in Mozilla Firefox OS before 2.2 might allow attackers to cause a denial of service memory corruption via a negative value of a size paramete...

6.4AI score0.01104EPSS
Exploits0References3
Rows per page
Query Builder