Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2023/11/07 12:0 a.m.40 views

Rocky Linux 8 : thunderbird (RLSA-2022:0129)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0129 advisory. - It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR 91.5, Firefox...

10CVSS7.8AI score0.01351EPSS
Exploits6References25
CVE
CVEadded 2022/12/22 12:0 a.m.530 views

CVE-2022-22745

CVE-2022-22745 describes a cross-origin information leak via SecurityPolicyViolation events for frame-ancestors violations. Public documents associate this with Firefox ESR versions earlier than 91.5, Firefox versions earlier than 96, and Thunderbird versions earlier than 91.5. The connected advi...

6.5CVSS7.1AI score0.00646EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVEadded 2022/12/22 12:0 a.m.52 views

CVE-2022-22745

Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

6.5CVSS8.1AI score0.00646EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2022/01/27 12:0 a.m.49 views

SUSE SLED15 / SLES15 Security Update : MozillaThunderbird (SUSE-SU-2022:0199-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0199-1 advisory. - It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox...

10CVSS7.9AI score0.01351EPSS
Exploits6References30
BDU FSTEC
BDU FSTECadded 2022/01/19 12:0 a.m.1 views

The vulnerability of the securitypolicyviolation component in the Thunderbird email client, as well as in browsers Firefox and Firefox ESR, allows attackers to gain access to confidential information.

The vulnerability of the securitypolicyviolation component in the Thunderbird email client, as well as in browsers like Firefox and Firefox ESR, is related to the fact that events triggered by Securitypolicyviolation can lead to information leaks. Exploiting this vulnerability allows a remote...

5CVSS6.8AI score0.00646EPSS
Exploits0References11Affected Software8
RedHat Linux
RedHat Linuxadded 2022/01/12 1:9 p.m.2 views

Mozilla: Leaking cross-origin URLs through securitypolicyviolation event

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations...

6.5CVSS7.3AI score0.00646EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/01/12 12:35 p.m.2 views

Mozilla: Leaking cross-origin URLs through securitypolicyviolation event

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations...

6.5CVSS7.3AI score0.00646EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2022/01/11 12:0 a.m.56 views

Mozilla Thunderbird < 91.5

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.5. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-03 advisory. - Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyso...

10CVSS7.8AI score0.01351EPSS
Exploits6References15
Rows per page
Query Builder