Lucene search
K

38 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerabilities in Firefox, Thunderbird, NSS

An attacker could create a PKCS 12 certificate bundle in a way that allows arbitrary memory writes through the mishandled Safe Bag attributes of PKCS 12. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS6.8AI score0.00817EPSS
Exploits0References2
OSV
OSV
added 2026/05/17 7:16 p.m.6 views

UBUNTU-CVE-2026-8507

Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl have out-of-bounds OOB write flaws. When parsing a PKCS12 file, with a = 1 GiB OCTET STRING or BIT STRING attribute on a SAFEBAG, via info or infoashash, a heap out-of-bounds write would be triggered with remote-code-execution potential RCE du...

9.8CVSS5.9AI score0.00648EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/17 12:0 a.m.13 views

PT-2026-41582

Name of the Vulnerable Software and Affected Versions Crypt::OpenSSL::PKCS12 versions prior to 1.95 Description An out-of-bounds write flaw exists when parsing a PKCS12 file containing an OCTET STRING or BIT STRING attribute on a SAFEBAG of 1 GiB or larger. This issue is triggered via the info or...

9.8CVSS6.2AI score0.00648EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12784

Malicious code in bioql PyPI...

8.8CVSS7.9AI score0.00817EPSS
Exploits0References29
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-0767

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.7AI score0.00817EPSS
Exploits0References2
OSV
OSV
added 2023/06/02 5:15 p.m.3 views

DEBIAN-CVE-2023-0767

An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS7.2AI score0.00817EPSS
Exploits0References1
Prion
Prion
added 2023/06/02 5:15 p.m.34 views

Code injection

An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

6.8CVSS8.2AI score0.00817EPSS
Exploits0References5Affected Software3
Debian CVE
Debian CVE
added 2023/06/02 12:0 a.m.76 views

CVE-2023-0767

An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

8.8CVSS7.8AI score0.00817EPSS
Exploits0
Rosalinux
Rosalinux
added 2023/05/28 9:4 a.m.31 views

Advisory ROSA-SA-2023-2165

Software: nss 3.53.1 OS: rosa-server79 packageevrstring: 3.53.1-7.res7 CVE-ID: CVE-2023-0767 BDU-ID: 2023-01270 CVE-Crit: HIGH CVE-DESC: A vulnerability in Mozilla Firefox, Mozilla Firefox ESR, and Mozilla Thunderbird email client browsers is related to improper limiting of operations within the...

8.8CVSS9AI score0.00817EPSS
Exploits0
OSV
OSV
added 2023/04/12 8:41 p.m.5 views

CLSA-2023-1681328662 Fix CVE(s): CVE-2023-0767

SECURITY UPDATE: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled - debian/patches/CVE-2023-0767.patch: improve handling of unknown PKCS12 safe bag types - CVE-2023-0767...

8.8CVSS7.3AI score0.00817EPSS
Exploits0References1
OSV
OSV
added 2023/04/12 7:25 p.m.7 views

CLSA-2023-1681327540 nss: Fix of CVE-2023-0767

CVE-2023-0767: nss: improve handling of unknown PKCS12 safe bag types...

8.8CVSS6.9AI score0.00817EPSS
Exploits0References1
CloudLinux
CloudLinux
added 2023/04/12 7:25 p.m.52 views

nss: Fix of CVE-2023-0767

CVE-2023-0767: nss: improve handling of unknown PKCS12 safe bag types...

8.8CVSS7.6AI score0.00817EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/04/10 2:3 a.m.2 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/27 3:14 p.m.4 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/27 8:20 a.m.8 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/23 11:32 a.m.4 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/23 11:20 a.m.6 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/23 11:18 a.m.5 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/23 11:10 a.m.5 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/23 9:9 a.m.4 views

nss: Arbitrary memory write via PKCS 12

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References6
Rows per page
Query Builder