CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8307 matches found

RedHat Linux•added 2024/06/17 1:49 p.m.•4 views

Mozilla: Cross-Origin Image leak via Offscreen Canvas

The Mozilla Foundation Security Advisory describes this flaw as: Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy...

6.1CVSS7.2AI score0.01765EPSS

Exploits0References6

RedHat Linux•added 2024/06/17 1:39 p.m.•2 views

Mozilla: Cross-Origin Image leak via Offscreen Canvas

6.1CVSS7.2AI score0.01765EPSS

Exploits0References6

RedHat Linux•added 2024/06/17 1:21 p.m.•3 views

Mozilla: Cross-Origin Image leak via Offscreen Canvas

6.1CVSS7.2AI score0.01765EPSS

Exploits0References6

RedHat Linux•added 2024/06/17 1:19 p.m.•3 views

Mozilla: Cross-Origin Image leak via Offscreen Canvas

6.1CVSS7.2AI score0.01765EPSS

Exploits0References6

RedHat Linux•added 2024/06/17 1:16 p.m.•4 views

Mozilla: Cross-Origin Image leak via Offscreen Canvas

6.1CVSS7.2AI score0.01765EPSS

Exploits0References6

RedHat Linux•added 2024/06/17 1:8 p.m.•3 views

Mozilla: Cross-Origin Image leak via Offscreen Canvas

6.1CVSS7.2AI score0.01765EPSS

Exploits0References6

Positive Technologies•added 2024/06/17 12:0 a.m.•3 views

PT-2024-27702 · Xiaomi · Redmi Router Rb03

Name of the Vulnerable Software and Affected Versions: Redmi router RB03 version 1.0.57 Description: The issue allows an attacker in the same WLAN as the victim to hijack traffic between the victim and any remote server by sending forged ICMP redirect messages. This can be exploited by an attacke...

4.1CVSS7.2AI score0.00063EPSS

Exploits1References3

CNNVD•added 2024/06/14 12:0 a.m.•2 views

Rockwell Automation GuardLogix and CompactLogix Security Vulnerabilities

Rockwell Automation GuardLogix and Rockwell Automation CompactLogix are both series of controllers from Rockwell Automation, Inc. A security vulnerability exists in several Rockwell Automation products. An attacker has exploited the vulnerability to cause a major unrecoverable failure of all...

8.3CVSS6.7AI score0.0041EPSS

Exploits0References2

Tenable Nessus•added 2024/06/13 12:0 a.m.•26 views

Mozilla Thunderbird < 115.12

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 115.12. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-28 advisory. - By tricking the browser with a X-Frame-Options header, a sandboxed iframe could have presented a button...

8.6CVSS7.5AI score0.0588EPSS

Exploits2References9

SUSE CVE•added 2024/06/12 3:20 a.m.•1 views

SUSE CVE-2024-5693

Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12...

6.1CVSS6.2AI score0.01765EPSS

Exploits0References9

RedhatCVE•added 2024/06/11 8:54 p.m.•15 views

CVE-2024-5693

6.1CVSS6.1AI score0.01765EPSS

Exploits0References5

AlpineLinux•added 2024/06/11 1:15 p.m.•14 views

CVE-2024-5693

6.1CVSS5.5AI score0.01765EPSS

Exploits0

NVD•added 2024/06/11 1:15 p.m.•14 views

CVE-2024-5693

6.1CVSS0.01765EPSS

Exploits0References6

OSV•added 2024/06/11 1:15 p.m.•1 views

DEBIAN-CVE-2024-5693

6.1CVSS6.9AI score0.01765EPSS

Exploits0References1

OSV•added 2024/06/11 1:15 p.m.•13 views

CVE-2024-5693

6.1CVSS5.9AI score

Exploits0References6

Debian CVE•added 2024/06/11 12:40 p.m.•16 views

CVE-2024-5693

6.1CVSS6.8AI score0.01765EPSS

Exploits0

Vulnrichment•added 2024/06/11 12:40 p.m.•19 views

CVE-2024-5693

5.8AI score0.01765EPSS

Exploits0References6

CVE•added 2024/06/11 12:40 p.m.•309 views

CVE-2024-5693

Offscreen Canvas cross-origin tainting tracked incorrectly, enabling potential access to image data from other sites. Affected: Firefox <127, Firefox ESR <115.12, Thunderbird

6.1CVSS5.2AI score0.01765EPSS

Exploits0References6Affected Software2