Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-25225

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.00386EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/08/19 9:15 p.m.4 views

CVE-2025-55031

Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within Bluetooth range could have used this to trick the user into using their passkey to log the attacker's computer into the target account. This vulnerability affects...

9.8CVSS6.7AI score0.00386EPSS
Exploits0References4
OSV
OSV
added 2025/08/19 9:15 p.m.7 views

CVE-2025-55031

Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within Bluetooth range could have used this to trick the user into using their passkey to log the attacker's computer into the target account. This vulnerability affects...

9.8CVSS5.8AI score0.00386EPSS
Exploits0References4
CVE
CVE
added 2025/08/19 8:52 p.m.25 views

CVE-2025-55031

CVE-2025-55031 affects Firefox for iOS and Firefox Focus for iOS prior to version 142. A malicious page can trigger FIDO/hybrid passkey transport by passing FIDO links to the OS, and an attacker within Bluetooth range could coerce a user into using their passkey to sign into the attacker’s machin...

9.8CVSS5.8AI score0.00386EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2025/08/19 8:52 p.m.10 views

CVE-2025-55031 Passkey phishing within Bluetooth range

Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within Bluetooth range could have used this to trick the user into using their passkey to log the attacker's computer into the target account. This vulnerability was fixed...

0.00386EPSS
Exploits0References4
Mozilla
Mozilla
added 2025/08/19 12:0 a.m.9 views

Security Vulnerabilities fixed in Focus for iOS 142 — Mozilla

Focus for iOS would not respect a Content-Disposition header of type Attachment and would incorrectly display the content inline, potentially allowing for XSS attacks Dragging JavaScript links to the URL bar in Focus for iOS could be utilized to run malicious scripts, potentially resulting in XSS...

9.8CVSS5.9AI score0.00386EPSS
Exploits0References4Affected Software1
Mozilla
Mozilla
added 2025/08/19 12:0 a.m.8 views

Security Vulnerabilities fixed in Firefox for iOS 142 — Mozilla

Firefox for iOS would not respect a Content-Disposition header of type Attachment and would incorrectly display the content inline rather than downloading, potentially allowing for XSS attacks Malicious scripts utilizing repetitive JavaScript alerts could prevent client user interaction in some...

9.8CVSS6AI score0.00386EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.14 views

Mozilla Firefox < 136.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 136.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-14 advisory. - Malicious pages could use Firefox for Android to pass FIDO: links to the OS and trigger the hybrid passkey...

9.8CVSS7AI score0.00519EPSS
Exploits1References16
Rows per page
Query Builder