Lucene search
K

21 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.2 views

SUSE CVE-2022-38476

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

7.5CVSS8.6AI score0.0082EPSS
Exploits0References7
OSV
OSV
added 2022/12/22 8:15 p.m.1 views

DEBIAN-CVE-2022-38476

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

7.5CVSS7.6AI score0.0082EPSS
Exploits0References1
NVD
NVD
added 2022/12/22 8:15 p.m.22 views

CVE-2022-38476

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

7.5CVSS0.0082EPSS
Exploits0References3
Prion
Prion
added 2022/12/22 8:15 p.m.20 views

Design/Logic Flaw

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

5.1CVSS7.3AI score0.0082EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.25 views

CVE-2022-38476

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

7.8AI score0.0082EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.22 views

CVE-2022-38476

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

7.5CVSS7.8AI score0.0082EPSS
Exploits0
CVE
CVE
added 2022/12/22 12:0 a.m.175 views

CVE-2022-38476

CVE-2022-38476 describes a data race in PK11_ChangePW that could cause a use-after-free, affecting Firefox ESR < 102.2 and Thunderbird

7.5CVSS7.4AI score0.0082EPSS
Exploits0References3Affected Software2
AlpineLinux
AlpineLinux
added 2022/12/22 12:0 a.m.18 views

CVE-2022-38476

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

7.5CVSS7.8AI score0.0082EPSS
Exploits0
Veracode
Veracode
added 2022/09/04 11:46 a.m.23 views

Use-After-Free

thunderbird is vulnerable to use-after-free. The vulnerability exist in PK11ChangePW function which allows use-after-free...

7.5CVSS8AI score0.0082EPSS
Exploits0References4Affected Software5
Cent OS
Cent OS
added 2022/09/01 10:1 p.m.77 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2022:6169 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.8CVSS6.9AI score0.00905EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.37 views

CentOS 7 : firefox (RHSA-2022:6179)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6179 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.30 views

CentOS 7 : thunderbird (RHSA-2022:6169)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6169 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8AI score0.00905EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2022/08/25 12:0 a.m.32 views

CVE-2022-38476

A data race could occur in the PK11ChangePW function, potentially leading to a use-after-free vulnerability. In Firefox, this lock protected the data when a user changed their master password. This vulnerability affects Firefox ESR 102.2 and Thunderbird 102.2...

7.5CVSS7.1AI score0.0082EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/08/25 12:0 a.m.18 views

Mozilla Firefox ESR Security Advisory (MFSA2022-34) - Windows

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

8.8CVSS8.1AI score0.00905EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/08/24 6:48 p.m.34 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.8CVSS6.9AI score0.00905EPSS
Exploits0References6
OSV
OSV
added 2022/08/24 4:55 p.m.18 views

RLSA-2022:6175 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.13.0 ESR. Security Fixes: Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have...

8.8CVSS8.9AI score0.00905EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2022/08/24 4:55 p.m.29 views

firefox security update

An update is available for firefox. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Firefox is an open-source web browser, designed for standards...

8.8CVSS8.9AI score0.00905EPSS
Exploits0
OSV
OSV
added 2022/08/24 3:28 p.m.16 views

RLSA-2022:6164 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.13.0. Security Fixes: Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have inherited the parent's permissions CVE-2022-3847...

8.8CVSS8.9AI score0.00905EPSS
Exploits0References6
OSV
OSV
added 2022/08/24 12:0 a.m.17 views

ALSA-2022:6175 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.13.0 ESR. Security Fixes: Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have...

8.8CVSS8.9AI score0.00905EPSS
Exploits0References12
AlmaLinux
AlmaLinux
added 2022/08/24 12:0 a.m.22 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.13.0 ESR. Security Fixes: Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have...

8.8CVSS8.9AI score0.00905EPSS
Exploits0References12
Rows per page
Query Builder