CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

524 matches found

Mozilla•added 2024/06/11 12:0 a.m.•74 views

Security Vulnerabilities fixed in Firefox 127 — Mozilla

If a specific sequence of actions is performed when opening a new tab, the triggering principal associated with the new tab may have been incorrect. The triggering principal is used to calculate many values, including the Referer and Sec- headers, meaning there is the potential for incorrect...

8.1CVSS7.3AI score0.0588EPSS

Exploits3References16Affected Software1

Tenable Nessus•added 2024/05/11 12:0 a.m.•30 views

RHEL 7 : firefox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - firefox: Possible integer overflow to fix inside XMLParse in Expat CVE-2016-9063 - firefox: arbitrary cod...

8AI score0.0271EPSS

Exploits0References10

Tenable Nessus•added 2024/05/11 12:0 a.m.•20 views

RHEL 8 : firefox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - firefox: mixed content warning is not displayed when HTTPS page loads a favicon over HTTP CVE-2018-12403 ...

7.4AI score0.00737EPSS

Exploits0References7

Tenable Nessus•added 2024/05/06 12:0 a.m.•26 views

GLSA-202405-15 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202405-15 Mozilla Firefox: Multiple Vulnerabilities - When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. This vulnerability affects...

9.8CVSS7.9AI score0.0073EPSS

Exploits2References14

Tenable Nessus•added 2024/05/04 12:0 a.m.•15 views

GLSA-202405-03 : Dalli: Code Injection

The remote host is affected by the vulnerability described in GLSA-202405-03 Dalli: Code Injection - A vulnerability was found in Dalli. It has been classified as problematic. Affected is the function self.metaset of the file lib/dalli/protocol/meta/requestformatter.rb of the component Meta...

6.3CVSS3.9AI score0.00317EPSS

Exploits1References3

Gentoo Linux•added 2024/05/04 12:0 a.m.•25 views

Dalli: Code Injection

Background Dalli is a high performance pure Ruby client for accessing memcached servers. Description A vulnerability was found in Dalli. Affected is the function self.metaset of the file lib/dalli/protocol/meta/requestformatter.rb of the component Meta Protocol Handler. The manipulation leads to...

6.3CVSS7.2AI score0.00317EPSS

Exploits1

Tenable Nessus•added 2024/03/15 12:0 a.m.•13 views

Mobatek MobaXterm 11.1 / 12.1 (CVE-2019-16305)

The version of Mobatek MobaXterm installed on the remote host is 11.1 and 12.1. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-16305 advisory. - In MobaXterm 11.1 and 12.1, the protocol handler is vulnerable to command injection. A crafted link can trigger a popup...

8.8CVSS7.4AI score0.00501EPSS

Exploits1References3