Lucene search
+L

1814 matches found

UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.5 views

CVE-2025-13015

Spoofing issue in Firefox. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, and Firefox ESR 115.30...

3.4CVSS5.8AI score0.00256EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.6 views

CVE-2025-13019

Same-origin policy bypass in the DOM: Workers component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.1CVSS7.2AI score0.00251EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.6 views

CVE-2025-13017

Same-origin policy bypass in the DOM: Notifications component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.1CVSS7.2AI score0.00251EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.3 views

CVE-2025-13020

Use-after-free in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.8CVSS7.3AI score0.00279EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.4 views

CVE-2025-13025

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

7.5CVSS7.1AI score0.0027EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.3 views

CVE-2025-13024

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00347EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.4 views

CVE-2025-13023

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00347EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.3 views

CVE-2025-13022

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00347EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.5 views

CVE-2025-13027

Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

8.1CVSS7.2AI score0.00324EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.5 views

CVE-2025-13014

Use-after-free in the Audio/Video component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Firefox ESR 115.30, Thunderbird 145, and Thunderbird 140.5...

8.8CVSS7.3AI score0.00288EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/11/11 12:0 a.m.4 views

CVE-2025-13016

Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

7.5CVSS7.3AI score0.00449EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.3 views

CVE-2025-12430

Object lifecycle issue in Media in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

7.5CVSS7.1AI score0.00305EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.3 views

CVE-2025-12436

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. Chromium security severity: Medium...

5.9CVSS6.2AI score0.00164EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.3 views

CVE-2025-12445

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Low...

6.5CVSS6.6AI score0.00139EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.5 views

CVE-2025-12440

Inappropriate implementation in Autofill in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS6.1AI score0.00201EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.5 views

CVE-2025-12432

Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.0023EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.4 views

CVE-2025-12429

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00296EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.4 views

CVE-2025-12444

Incorrect security UI in Fullscreen UI in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.9AI score0.00173EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.3 views

CVE-2025-12447

Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.9AI score0.00173EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/10 8:15 p.m.3 views

CVE-2025-12434

Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.9AI score0.00178EPSS
Exploits0References1
Rows per page
Query Builder