CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7491 matches found

OpenVAS•added 2013/01/16 12:0 a.m.•68 views

Mozilla Products Multiple Vulnerabilities (Jan 2013) - Mac OS X

Mozilla Firefox/Thunderbird/Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS9.8AI score0.87365EPSS

Exploits14References20

Fedora•added 2013/01/15 2:31 a.m.•47 views

[SECURITY] Fedora 18 Update: rubygem-activerecord-3.2.8-2.fc18

Implements the ActiveRecord pattern Fowler, PoEAA for ORM. It ties databa se tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL...

7.5CVSS1.4AI score0.01017EPSS

Exploits2

Fedora•added 2013/01/15 2:31 a.m.•56 views

[SECURITY] Fedora 17 Update: rubygem-activerecord-3.0.11-4.fc17

7.5CVSS1.4AI score0.01017EPSS

Exploits6

Fedora•added 2013/01/15 2:22 a.m.•48 views

[SECURITY] Fedora 16 Update: rubygem-activerecord-3.0.10-4.fc16

7.5CVSS1.4AI score0.01017EPSS

Exploits6

NVD•added 2013/01/13 8:55 p.m.•19 views

CVE-2013-0758

Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allow remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging...

9.3CVSS7.3AI score0.87365EPSS

Exploits4References12

NVD•added 2013/01/13 8:55 p.m.•20 views

CVE-2013-0745

The AutoWrapperChanger class in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.2, and SeaMonkey before 2.15 does not properly interact with garbage collection, which allows remote attackers to execute arbitrary code via a...

9.3CVSS7.1AI score0.03154EPSS

Exploits0References10

NVD•added 2013/01/13 8:55 p.m.•19 views

CVE-2013-0756

Use-after-free vulnerability in the objtoSource function in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.2, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code via a crafted web page referencing...

9.3CVSS7.3AI score0.01375EPSS

Exploits0References10

Prion•added 2013/01/13 8:55 p.m.•30 views

Design/Logic Flaw

9.3CVSS7.8AI score0.01375EPSS

Exploits0References10Affected Software10

Prion•added 2013/01/13 8:55 p.m.•24 views

Design/Logic Flaw

9.3CVSS7.8AI score0.87365EPSS

Exploits4References12Affected Software15

CVE•added 2013/01/13 8:0 p.m.•127 views

CVE-2013-0745

This CVE (CVE-2013-0745) affects Mozilla Firefox prior to 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.2, and SeaMonkey before 2.15. It is caused by the AutoWrapperChanger not interacting correctly with garbage collection, enabling remote code ...

9.3CVSS9.2AI score0.03154EPSS

Exploits0References10Affected Software4

Cvelist•added 2013/01/13 8:0 p.m.•20 views

CVE-2013-0756

9.5AI score0.01375EPSS

Exploits0References10

CVE•added 2013/01/13 8:0 p.m.•120 views

CVE-2013-0756

CVE-2013-0756 corresponds to a use-after-free in Mozilla Firefox’s obj_toSource path that can be triggered by a crafted web page referencing JavaScript Proxy objects, allowing remote code execution via standard web-visit attack vectors. Affected products include Firefox (pre-18.0), Firefox ESR 17...

9.3CVSS9.3AI score0.01375EPSS

Exploits0References10Affected Software4

NVD•added 2013/01/09 6:9 p.m.•16 views

CVE-2013-0004

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly validate the permissions of objects in memory, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework application, aka...

9.3CVSS7.4AI score0.08661EPSS

Exploits2References3

UbuntuCve•added 2013/01/09 12:0 a.m.•23 views

CVE-2013-0756

9.3CVSS7.6AI score0.01375EPSS

Exploits0References4

UbuntuCve•added 2013/01/09 12:0 a.m.•30 views

CVE-2013-0758

9.3CVSS7.5AI score0.87365EPSS

Exploits4References4

UbuntuCve•added 2013/01/09 12:0 a.m.•29 views

CVE-2013-0745

9.3CVSS7.6AI score0.03154EPSS

Exploits0References4

RedHat Linux•added 2013/01/08 9:28 p.m.•1 views

Mozilla: Chrome Object Wrapper (COW) bypass through plugin objects (MFSA 2013-15)

9.3CVSS7.7AI score0.87365EPSS

Exploits4References5

RedHat Linux•added 2013/01/08 9:10 p.m.•2 views

Mozilla: Address space layout leaked in XBL objects (MFSA 2013-11)

The XBL.proto.toString implementation in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 makes it easier for remote attackers to bypass the ASLR...

4.3CVSS7.4AI score0.00321EPSS

Exploits1References5

RedHat Linux•added 2013/01/08 9:10 p.m.•1 views

Mozilla: Chrome Object Wrapper (COW) bypass through plugin objects (MFSA 2013-15)

9.3CVSS7.7AI score0.87365EPSS

Exploits4References5

Packet Storm•added 2013/01/08 12:0 a.m.•37 views

Chrome For Android API Exposure

CVE Number: CVE-2012-4907 Title: Chrome for Android - Android APIs exposed to JavaScript Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: By abusing Java objects exposed to...

9.3CVSS0.3AI score0.00438EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by