Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-10082

Malware in sbrugna...

6.5CVSS7.9AI score0.0255EPSS
Exploits0References9
Cvelist
Cvelist
added 2024/01/19 12:25 a.m.46 views

CVE-2024-22424 Cross-Site Request Forgery (CSRF) in github.com/argoproj/argo-cd

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. The Argo CD API prior to versions 2.10-rc2, 2.9.4, 2.8.8, and 2.7.15 are vulnerable to a cross-server request forgery CSRF attack when the attacker has the ability to write HTML to a page on the same parent domain as Argo C...

8.3CVSS8.4AI score0.00386EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/12/13 12:0 a.m.24 views

RHEL 9 : firefox (RHSA-2022:8979)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8979 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS7.6AI score0.01061EPSS
Exploits0References28
Cent OS
Cent OS
added 2022/11/30 10:59 p.m.32 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2022:8555 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.8CVSS6.8AI score0.01061EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/11/22 12:0 a.m.54 views

RHEL 8 : firefox (RHSA-2022:8554)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8554 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

9.8CVSS7.6AI score0.02241EPSS
Exploits1References29
RedHat Linux
RedHat Linux
added 2022/11/21 12:40 p.m.24 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6.9AI score0.02241EPSS
Exploits1References14
OSV
OSV
added 2022/11/21 12:0 a.m.25 views

ALSA-2022:8554 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.5.0 ESR. Security Fixes: Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen...

9.8CVSS9.3AI score0.01061EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2022/11/21 12:0 a.m.29 views

RHEL 8 : thunderbird (RHSA-2022:8544)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8544 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.5.0. Security Fixes: Mozilla:...

9.8CVSS7.6AI score0.01061EPSS
Exploits0References28
AlmaLinux
AlmaLinux
added 2022/11/21 12:0 a.m.35 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.5.0 ESR. Security Fixes: Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen...

9.8CVSS9.8AI score0.01061EPSS
Exploits0References28
Veracode
Veracode
added 2022/11/19 6:49 p.m.29 views

Authentication Bypass

firefox is vulnerable to authentication bypass. The vulnerability exists when a ServiceWorker intercepted a request with FetchEvent which allows an attacker to bypass SameSite cookie policy by sending malicious requests...

6.5CVSS8.2AI score0.00744EPSS
Exploits0References5Affected Software6
OpenVAS
OpenVAS
added 2022/11/18 12:0 a.m.18 views

Debian: Security Advisory (DLA-3199-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.01061EPSS
Exploits0References4
Debian
Debian
added 2022/11/17 7:18 p.m.33 views

[SECURITY] [DLA 3199-1] firefox-esr security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3199-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort November 17, 2022 https://wiki.debian.org/LTS -...

9.8CVSS9.4AI score0.01061EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/11/16 12:0 a.m.25 views

Mozilla Firefox ESR Security Advisories (MFSA2022-47, MFSA2022-49) - Mac OS X

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

9.8CVSS8.5AI score0.01061EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/11/16 12:0 a.m.27 views

Mozilla Firefox Security Advisory (MFSA2022-47) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

9.8CVSS7.5AI score0.01659EPSS
Exploits0References1
OSV
OSV
added 2018/12/11 4:29 p.m.7 views

CVE-2018-18351

Lack of proper validation of ancestor frames site when sending lax cookies in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass SameSite cookie policy via a crafted HTML page...

6.5CVSS8AI score
Exploits0References6
Prion
Prion
added 2018/12/11 4:29 p.m.22 views

Design/Logic Flaw

Lack of proper validation of ancestor frames site when sending lax cookies in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass SameSite cookie policy via a crafted HTML page...

4.3CVSS6.4AI score0.0255EPSS
Exploits0References6Affected Software5
Debian CVE
Debian CVE
added 2018/12/11 3:0 p.m.44 views

CVE-2018-18351

Lack of proper validation of ancestor frames site when sending lax cookies in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass SameSite cookie policy via a crafted HTML page...

6.5CVSS6.9AI score0.0255EPSS
Exploits0
CVE
CVE
added 2018/12/11 3:0 p.m.145 views

CVE-2018-18351

CVE-2018-18351 is a Chromium/Google Chrome vulnerability described in connected sources as an access restriction bypass in the Navigation component, caused by insufficient policy enforcement that allows bypassing the SameSite cookie policy via a crafted HTML page. Affected product: Chromium/Chrom...

6.5CVSS6.3AI score0.0255EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder