Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2022/08/16 12:0 a.m.41 views

GLSA-202208-08 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202208-08 Mozilla Firefox: Multiple Vulnerabilities - Use after free in Codecs in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-1919 - regex...

9.8CVSS8.3AI score0.26709EPSS
Exploits23References78
RedHat Linux
RedHat Linux
added 2022/05/27 7:2 p.m.39 views

Critical: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

8.8CVSS7.6AI score0.26709EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/05/27 6:40 p.m.4 views

Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...

8.8CVSS7.4AI score0.17103EPSS
Exploits0References5
OSV
OSV
added 2022/05/27 6:28 p.m.25 views

RLSA-2022:4776 Critical: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.9.1 ESR. Security Fixes: Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla:...

8.8CVSS9.1AI score0.26709EPSS
Exploits0References3
OSV
OSV
added 2022/05/27 6:24 p.m.37 views

RLSA-2022:4769 Critical: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.1. Security Fixes: Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla: Prototype pollution in Top-Level Await implementati...

8.8CVSS9.1AI score0.26709EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2022/05/27 6:24 p.m.40 views

Critical: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.1. Security Fixes: Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla: Prototype pollution in Top-Level Await implementati...

8.8CVSS1.5AI score0.26709EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/05/27 2:55 a.m.48 views

Critical: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS7.6AI score0.26709EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/05/27 2:53 a.m.4 views

Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...

8.8CVSS7.4AI score0.17103EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/05/27 12:0 a.m.38 views

RHEL 8 : firefox (RHSA-2022:4768)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:4768 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS8.9AI score0.26709EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/05/26 11:26 p.m.4 views

Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...

8.8CVSS7.4AI score0.17103EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/05/24 5:57 p.m.3 views

Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...

8.8CVSS7.4AI score0.17103EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/05/24 4:41 p.m.5 views

Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the...

8.8CVSS7.4AI score0.17103EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/05/23 12:0 a.m.5 views

The vulnerability in the JavaScript object indexing mechanism of Mozilla Firefox, Mozilla Firefox ESR, and the email client Thunderbird allows a malicious actor to execute arbitrary JavaScript code.

The vulnerability of the JavaScript object indexing mechanism in Mozilla Firefox, Mozilla Firefox ESR, and the email client Thunderbird is related to errors in processing input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary JavaScript code...

10CVSS8AI score0.17103EPSS
Exploits0References16Affected Software14
Rows per page
Query Builder