Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

ALT Linux
ALT Linuxadded 2020/04/04 12:0 a.m.31 views

Security fix for the ALT Linux 10 package firefox-esr version 68.6.1-alt1

April 4, 2020 Andrey Cherepanov 68.6.1-alt1 - New ESR version 68.6.1. - Fixed: + CVE-2020-6819 Use-after-free while running the nsDocShell destructor + CVE-2020-6820 Use-after-free when handling a ReadableStream...

6.8CVSS7.1AI score0.06305EPSS
Exploits1
OSV
OSVadded 2020/04/03 12:0 a.m.0 views

UBUNTU-CVE-2020-6819

Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Thunderbird 68.7.0, Firefox 74.0.1, and Firefox ESR 68.6.1...

8.1CVSS7.3AI score0.02978EPSS
Exploits1References7
VulnCheck KEV
VulnCheck KEVadded 2020/03/08 12:0 a.m.2 views

VulnCheck KEV: CVE-2020-6819

Mozilla Firefox and Thunderbird contain a race condition vulnerability when running the nsDocShell destructor under certain conditions. The race condition creates a use-after-free vulnerability, causing unspecified impacts...

8.1CVSS7.3AI score0.02978EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2017/03/08 12:0 a.m.19 views

Mozilla Firefox < 52 Multiple Vulnerabilities

Binary data 9986.prm...

10CVSS7.7AI score0.17484EPSS
Exploits12References17
BDU FSTEC
BDU FSTECadded 2016/07/05 12:0 a.m.2 views

The vulnerability of the Firefox browser, which allows a malicious attacker to execute arbitrary code.

Mozilla Firefox’s software contains a vulnerability in the nsDocShell::InternalLoad function. Exploiting this vulnerability allows an attacker to execute arbitrary code by performing “cross-site scripting” attacks using specially crafted network requests...

4.3CVSS7.6AI score0.01666EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTECadded 2016/07/05 12:0 a.m.2 views

The vulnerability of the Thunderbird email client, which allows a remote attacker to execute arbitrary code.

Mozilla Thunderbird’s software contains a vulnerability in the nsDocShell::InternalLoad function. Exploiting this vulnerability allows an attacker to execute arbitrary code by performing “cross-site scripting” attacks using specially crafted network requests...

4.3CVSS7.6AI score0.01666EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTECadded 2016/07/05 12:0 a.m.2 views

The vulnerability of the SeaMonkey software package, which allows a malicious attacker to execute arbitrary code.

The SeaMonkey software contains a vulnerability in the nsDocShell::InternalLoad function. Exploiting this vulnerability allows an attacker to execute arbitrary code by performing cross-site scripting attacks using specially crafted network requests...

4.3CVSS7.3AI score0.01666EPSS
Exploits0References4
Prion
Prionadded 2010/07/30 8:30 p.m.25 views

Design/Logic Flaw

The nsDocShell::OnRedirectStateChange function in docshell/base/nsDocShell.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to spoof the SSL security status of a document via vectors involving multiple requests, a redirect, and...

2.6CVSS6.9AI score0.01873EPSS
Exploits1References3Affected Software2
Rows per page
Query Builder