CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Tenable Nessus•added 2026/01/13 12:0 a.m.•1 views

MiracleLinux 8 : firefox-128.14.0-2.el8_10.ML.1 (AXSA:2025-10786:30)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-10786:30 advisory. firefox: thunderbird: Denial-of-service due to out-of-memory in the Graphics: WebRender component CVE-2025-9182 thunderbird: firefox: Sandbox escap...

9.8CVSS7.8AI score0.0021EPSS

Exploits0References6

Cvelist•added 2025/08/19 8:33 p.m.•6 views

CVE-2025-9179 Sandbox escape due to invalid pointer in the Audio/Video: GMP component

An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process. This vulnerability was fixed in Firefox 142, Firefox ESR 115.27, Firefox ESR 128.14,...

0.0021EPSS

Exploits0References8

OSV•added 2021/11/15 4:15 a.m.•2 views

AZL-6444 CVE-2021-43618 affecting package gmp for versions less than 6.2.1-2

GNU Multiple Precision Arithmetic Library GMP through 6.2.1 has an mpz/inpraw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms...

7.5CVSS7.2AI score0.0046EPSS

Exploits1References1

OSV•added 2008/10/14 8:0 p.m.•2 views

DEBIAN-CVE-2008-4551

strongSwan 4.2.6 and earlier allows remote attackers to cause a denial of service daemon crash via an IKESAINIT message with a large number of NULL values in a Key Exchange payload, which triggers a NULL pointer dereference for the return value of the mpzexport function in the GNU Multiprecision...

5CVSS6.4AI score0.01238EPSS

Exploits0References1