Lucene search
K

109 matches found

nessus
nessus
added 2026/05/21 12:0 a.m.24 views

F5 Networks BIG-IP : iControl REST and tmsh vulnerability (K000161018)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.2 / 17.5.1.6 / 21.0.0.2. It is, therefore, affected by a vulnerability as referenced in the K000161018 advisory. Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell...

7.1CVSS5.8AI score0.00203EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/14 12:0 a.m.20 views

PT-2026-41189

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.5 Description An issue exists where users granted read access to a model can also read the model's system prompt, which may contain confidential information. This occurs because the workspace model edit page...

4.3CVSS5.8AI score0.0022EPSS
Exploits1References7
nessus
nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : firefox-128.4.0-1.el8_10.ML.1 (AXSA:2024-8962:36)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8962:36 advisory. firefox: thunderbird: History interface could have been used to cause a Denial of Service condition in the browser CVE-2024-10464 firefox:...

9.8CVSS7.5AI score0.00809EPSS
Exploits0References11
nessus
nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 9 : firefox-128.4.0-1.el9_4.ML.1 (AXSA:2024-8972:37)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8972:37 advisory. firefox: thunderbird: History interface could have been used to cause a Denial of Service condition in the browser CVE-2024-10464 firefox:...

9.8CVSS7AI score0.00809EPSS
Exploits0References11
nessus
nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : thunderbird-128.4.0-1.el8_10.ML.1 (AXSA:2024-8963:26)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8963:26 advisory. firefox: thunderbird: History interface could have been used to cause a Denial of Service condition in the browser CVE-2024-10464 firefox:...

9.8CVSS7AI score0.00809EPSS
Exploits0References11
nessus
nessus
added 2025/11/20 12:0 a.m.12 views

TencentOS Server 4: thunderbird (TSSA-2024:1046)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1046 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.8CVSS7.7AI score0.00809EPSS
Exploits0References11
vulnrichment
vulnrichment
added 2025/10/31 11:50 a.m.2 views

CVE-2025-58149 Incorrect removal of permissions on PCI device unplug

When passing through PCI devices, the detach logic in libxl won't remove access permissions to any 64bit memory BARs the device might have. As a result a domain can still have access any 64bit memory BAR when such device is no longer assigned to the domain. For PV domains the permission leak allo...

6.4AI score0.00396EPSS
Exploits0References1
cve
cve
added 2025/10/31 11:50 a.m.31 views

CVE-2025-58149

CVE-2025-58149 affects the Xen hypervisor. The detach logic for PCI devices fails to remove access permissions to 64‑bit memory BARs when a device is unplugged, allowing PV guests to access memory of devices no longer assigned to them (HVM implications noted with required compromised device model...

7.5CVSS6.4AI score0.00396EPSS
Exploits0References3Affected Software1
debiancve
debiancve
added 2025/10/31 11:50 a.m.4 views

CVE-2025-58149

When passing through PCI devices, the detach logic in libxl won't remove access permissions to any 64bit memory BARs the device might have. As a result a domain can still have access any 64bit memory BAR when such device is no longer assigned to the domain. For PV domains the permission leak allo...

7.5CVSS5.3AI score0.00396EPSS
Exploits0
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-15978

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.0115EPSS
Exploits1References5
nessus
nessus
added 2025/08/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-10458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This vulnerability affects Firefox 132, Firefox ESR...

7.5CVSS7AI score0.00611EPSS
Exploits0References2
osv
osv
added 2025/07/18 2:48 p.m.5 views

OESA-2025-1835 thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and...

9.8CVSS9.4AI score0.32568EPSS
Exploits4References87
nessus
nessus
added 2025/03/10 12:0 a.m.18 views

Amazon Linux 2 : thunderbird (ALAS-2025-2789)

The version of thunderbird installed on the remote host is prior to 128.7.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2789 advisory. A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This...

9.8CVSS8AI score0.1307EPSS
Exploits0References58
amazon
amazon
added 2025/03/07 12:0 a.m.17 views

Important: thunderbird

Issue Overview: A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and Thunderbird 132. CVE-2024-10458 An attacker could have caused a...

9.8CVSS9.1AI score0.1307EPSS
Exploits0
nessus
nessus
added 2025/02/26 12:0 a.m.24 views

Amazon Linux 2 : thunderbird (ALAS-2025-2765)

The version of thunderbird installed on the remote host is prior to 128.7.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2765 advisory. A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This...

9.8CVSS8AI score0.1307EPSS
Exploits0References58
amazon
amazon
added 2025/02/13 7:10 a.m.16 views

Important: thunderbird

Issue Overview: A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and Thunderbird 132. CVE-2024-10458 An attacker could have caused a...

5.3CVSS7.8AI score0.1307EPSS
Exploits0
astralinux
astralinux
added 2025/02/11 7:35 a.m.1 views

Astra Linux – Vulnerability in Firefox, Thunderbird

A permission leak could have occurred from a trusted site to an untrusted site through embed or object elements. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and Thunderbird 132...

7.5CVSS6.7AI score0.00611EPSS
Exploits0References4
nessus
nessus
added 2024/11/19 12:0 a.m.19 views

AlmaLinux 9 : thunderbird (ALSA-2024:9552)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2024:9552 advisory. firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 firefox: thunderbird: History interface could have been used to cause a...

9.8CVSS7.8AI score0.32568EPSS
Exploits1References13
redhat
redhat
added 2024/11/13 3:17 p.m.6 views

firefox: thunderbird: Permission leak via embed or object elements

The Mozilla Foundation's Security Advisory: A permission leak could occur from a trusted site to an untrusted site via embed or object elements...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References10
redhat
redhat
added 2024/11/13 3:4 p.m.7 views

firefox: thunderbird: Permission leak via embed or object elements

The Mozilla Foundation's Security Advisory: A permission leak could occur from a trusted site to an untrusted site via embed or object elements...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References10
Rows per page
Query Builder