Lucene search
K

43 matches found

RedHat Linux
RedHat Linux
added 2022/09/26 3:37 p.m.3 views

Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...

6.5CVSS7.3AI score0.01104EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/26 3:15 p.m.4 views

Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...

6.5CVSS7.3AI score0.01104EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/26 2:54 p.m.4 views

Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...

6.5CVSS7.3AI score0.01104EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/26 2:54 p.m.5 views

Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...

6.5CVSS7.3AI score0.01104EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/26 2:32 p.m.4 views

Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...

6.5CVSS7.3AI score0.01104EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/26 2:16 p.m.38 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/09/26 2:16 p.m.5 views

Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...

6.5CVSS7.3AI score0.01104EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/26 2:7 p.m.7 views

Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...

6.5CVSS7.3AI score0.01104EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.34 views

RHEL 8 : thunderbird (RHSA-2022:6715)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6715 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla:...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.37 views

RHEL 8 : firefox (RHSA-2022:6702)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6702 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS7.8AI score0.01342EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.26 views

RHEL 8 : firefox (RHSA-2022:6701)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6701 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS7.8AI score0.01342EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.42 views

RHEL 7 : firefox (RHSA-2022:6711)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6711 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS7.8AI score0.01342EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2022/09/22 12:0 a.m.21 views

Mozilla Thunderbird Security Advisory (MFSA2022-42) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

8.8CVSS7.6AI score0.01342EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/09/21 12:0 a.m.26 views

Mozilla Firefox ESR Security Advisory (MFSA2022-41) - Mac OS X

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/09/21 12:0 a.m.16 views

Mozilla Firefox Security Advisory (MFSA2022-40) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/09/20 12:0 a.m.4 views

Mozilla Firefox 注入漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 105, which stems from the fact that by injecting a cookie with certain special characters, an attacker on a shared subdomain in a...

6.5CVSS7.7AI score0.01104EPSS
Exploits0References17
NVD
NVD
added 2021/08/23 1:15 p.m.29 views

CVE-2021-35465

Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a VLLDM instruction. A Non-secure handler may have read or write access to part of a Secure context. This affects Arm Cortex-M33 r0p0 through r1p0, Arm Cortex-M35P r0, Arm Cortex-M55 r0p0 through r1p0, and...

3.6CVSS0.00298EPSS
Exploits0References2
OSV
OSV
added 2021/08/23 1:15 p.m.2 views

CVE-2021-35465

Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a VLLDM instruction. A Non-secure handler may have read or write access to part of a Secure context. This affects Arm Cortex-M33 r0p0 through r1p0, Arm Cortex-M35P r0, Arm Cortex-M55 r0p0 through r1p0, and...

3.4CVSS5.8AI score0.00298EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/08/23 12:0 a.m.4 views

多款 ARM 产品安全漏洞

ARM Cortex-M55 and others are products of ARM UK.ARM Cortex-M55 is ARM Holdings' ultra-low power ARM microarchitecture for microcontrollers and embedded subsystems.ARM Cortex-M35P is a tamper-resistant Cortex -M processor.ARM Cortex-M33 is a feature-rich implementation of the Armv8-M architecture...

3.6CVSS5.2AI score0.00298EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/10 12:0 a.m.15 views

Mozilla Rust Cross-Site Scripting Vulnerability (CNVD-2021-61406)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A cross-site scripting vulnerability exists in comrak crate in versions of Mozilla Rust prior to 0.10.1, which could be exploited by an attacker to execute the script in a Web browser in the secure context of a...

6.1CVSS3.6AI score0.00741EPSS
Exploits1References1
Rows per page
Query Builder