CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

The Hacker News•added 2025/11/04 2:0 p.m.•4 views

Microsoft Teams Bugs Let Attackers Impersonate Colleagues and Edit Messages Unnoticed

Cybersecurity researchers have disclosed details of four security flaws in Microsoft Teams that could have exposed users to serious impersonation and social engineering attacks. The vulnerabilities "allowed attackers to manipulate conversations, impersonate colleagues, and exploit notifications,"...

6.5CVSS6.7AI score0.11093EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-5081

Malware in sbrugna...

4.3CVSS7.1AI score0.00236EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2021-30467

Malicious code in bioql PyPI...

4.3CVSS7.3AI score0.00275EPSS

Exploits0References25

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-53942

Malicious code in bioql PyPI...

7.5CVSS8.6AI score0.00168EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-33076

Malicious code in bioql PyPI...

9.1CVSS9AI score0.0053EPSS

Exploits0References8

Debian CVE•added 2025/02/04 1:58 p.m.•10 views

CVE-2025-1018

The fullscreen notification is prematurely hidden when fullscreen is re-requested quickly by the user. This could have been leveraged to perform a potential spoofing attack. This vulnerability was fixed in Firefox 135 and Thunderbird 135...

7.3CVSS5.6AI score0.0018EPSS

Exploits0

Tenable Nessus•added 2025/02/04 12:0 a.m.•8 views

Mozilla Firefox < 135.0

The version of Firefox installed on the remote Windows host is prior to 135.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-07 advisory. - Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of memory corruption...

9.8CVSS7.4AI score0.00799EPSS

Exploits0References12

Debian CVE•added 2024/09/03 12:32 p.m.•20 views

CVE-2024-8388

Multiple prompts and panels from both Firefox and the Android OS could be used to obscure the notification announcing the transition to fullscreen mode after the fix for CVE-2023-6870 in Firefox 121. This could lead to spoofing the browser UI if the sudden appearance of the prompt distracted the...

5.3CVSS5.3AI score0.0046EPSS

Exploits0

Mozilla•added 2024/09/03 12:0 a.m.•35 views

Security Vulnerabilities fixed in Firefox 130 — Mozilla

A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an exploitable type confusion vulnerability. A potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the with environment. Multiple prompts a...

9.8CVSS7.8AI score0.11622EPSS

Exploits1References12Affected Software1

Debian CVE•added 2023/08/01 2:59 p.m.•36 views

CVE-2023-4053

A website could have obscured the full screen notification by using a URL with a scheme handled by an external program, such as a mailto URL. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox 116, Firefox ESR 115.2, and Thunderbird 115.2...

6.5CVSS7.6AI score0.00145EPSS

Exploits0

Tenable Nessus•added 2023/02/19 12:0 a.m.•38 views

Debian DSA-5355-1 : thunderbird - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5355 advisory. Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the stable distribution...

8.8CVSS8.3AI score0.00786EPSS

Exploits0References43

SUSE CVE•added 2023/02/15 4:10 a.m.•2 views

SUSE CVE-2019-13660

UI spoofing in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof notifications via a crafted HTML page...

5.3CVSS6.1AI score0.00226EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 4:10 a.m.•2 views

SUSE CVE-2019-13661

UI spoofing in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof notifications via a crafted HTML page...

4.3CVSS5.8AI score0.00236EPSS

Exploits0References8

OSV•added 2021/12/10 10:19 p.m.•5 views

MGASA-2021-0554 Updated thunderbird packages fix security vulnerability

Thunderbird unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities CVE-2021-43528. Under certain...

9.8CVSS9AI score0.00967EPSS

Exploits1References5

OSV•added 2021/12/08 10:15 p.m.•5 views

CVE-2021-43538

By misusing a race in our notification code, an attacker could have forcefully hidden the notification for pages that had received full screen and pointer lock access, which could have been used for spoofing attacks. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 9...

4.3CVSS8.7AI score

Exploits0References10

Packet Storm•added 2020/10/28 12:0 a.m.•404 views

God Kings 0.60.1 Notification Spoofing

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: God Kings Vendor URL: https://play.google.com/store/apps/details?id=com.innogames.gkandroid Type: Improper Verification of Intent by Broadcast Receiver CWE-925 Date found: 2020-09-07 Date...

5.6AI score0.00061EPSS

Exploits3

OSV•added 2019/11/25 3:15 p.m.•1 views

DEBIAN-CVE-2019-13660

UI spoofing in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof notifications via a crafted HTML page...

5.3CVSS6.7AI score0.00226EPSS

Exploits0References1

OSV•added 2019/11/25 3:15 p.m.•1 views

UBUNTU-CVE-2019-13661

UI spoofing in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof notifications via a crafted HTML page...

4.3CVSS6.7AI score0.00236EPSS

Exploits0References2