Lucene search
K

27 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox and Thunderbird

When importing an SPKI RSA public key as an ECDSA P-256 key, the key is handled incorrectly, causing the tab to crash. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

6.5CVSS6.6AI score0.00648EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-29649

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00648EPSS
Exploits0References25
ATTACKERKB
ATTACKERKB
added 2023/06/02 5:15 p.m.4 views

CVE-2023-25742

When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

6.5CVSS5.9AI score0.00648EPSS
Exploits0References5
NVD
NVD
added 2023/06/02 5:15 p.m.12 views

CVE-2023-25742

When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

6.5CVSS6.7AI score0.00648EPSS
Exploits0References4
OSV
OSV
added 2023/06/02 5:15 p.m.1 views

DEBIAN-CVE-2023-25742

When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

6.5CVSS6.1AI score0.00648EPSS
Exploits0References1
Prion
Prion
added 2023/06/02 5:15 p.m.23 views

Code injection

When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

4.3CVSS6.4AI score0.00648EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2023/06/02 12:0 a.m.177 views

CVE-2023-25742

CVE-2023-25742 : When importing a SPKI RSA public key as ECDSA P-256, the key is handled incorrectly, causing the tab to crash. Affected products per provided docs: Firefox < 110, Thunderbird < 102.8, and Firefox ESR

6.5CVSS6.6AI score0.00648EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2023/06/02 12:0 a.m.21 views

CVE-2023-25742

When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...

6.9AI score0.00648EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/30 12:0 a.m.20 views

GLSA-202305-35 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-35 Mozilla Firefox: Multiple Vulnerabilities - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled. CVE-2023-0767 -...

8.8CVSS8AI score0.00952EPSS
Exploits1References47
Amazon
Amazon
added 2023/03/06 12:0 a.m.40 views

Important: thunderbird

Issue Overview: If a MIME email combines OpenPGP and OpenPGP MIME data in a certain way Thunderbird repeatedly attempts to process and display the message, which could cause Thunderbird's user interface to lock up and no longer respond to the user's actions. An attacker could send a crafted messa...

8.8CVSS8.4AI score0.01812EPSS
Exploits1
Veracode
Veracode
added 2023/02/25 8:50 p.m.24 views

Denial Of Service (DoS)

firefox is vulnerable to Denial Of Service DoS. The vulnerability exists when importing an SPKI RSA public key as ECDSA P-256. The key would be handled incorrectly, causing the tab to crash...

6.5CVSS2.5AI score0.00648EPSS
Exploits0References5Affected Software5
Tenable Nessus
Tenable Nessus
added 2023/02/23 12:0 a.m.46 views

AlmaLinux 9 : firefox (ALSA-2023:0810)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0810 advisory. - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being...

8.8CVSS7.8AI score0.00817EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/02/22 12:0 a.m.37 views

SUSE SLES15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2023:0469-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0469-1 advisory. Updated to version 102.8.0 ESR bsc1208144: - CVE-2023-25728: Fixed content security policy leak in violation reports using iframes....

8.8CVSS6.9AI score0.00817EPSS
Exploits1References31
RedHat Linux
RedHat Linux
added 2023/02/20 12:21 p.m.3 views

Mozilla: Web Crypto ImportKey crashes tab

The Mozilla Foundation Security Advisory describes this flaw as: When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash...

6.5CVSS7.3AI score0.00648EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/02/20 8:35 a.m.7 views

Mozilla: Web Crypto ImportKey crashes tab

The Mozilla Foundation Security Advisory describes this flaw as: When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash...

6.5CVSS7.3AI score0.00648EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/02/20 8:30 a.m.3 views

Mozilla: Web Crypto ImportKey crashes tab

The Mozilla Foundation Security Advisory describes this flaw as: When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash...

6.5CVSS7.3AI score0.00648EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.48 views

Oracle Linux 8 : firefox (ELSA-2023-0808)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-0808 advisory. 102.8.0-2.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.27 views

Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-5880-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5880-1 advisory. Christian Holler discovered that Firefox did not properly manage memory when using PKCS 12 Safe Bag attributes. An attacker could construct a...

9.8CVSS7.7AI score0.00817EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.26 views

Debian dla-3324 : thunderbird - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3324 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3324-1 [email protected]...

8.8CVSS8.2AI score0.00892EPSS
Exploits0References42
Tenable Nessus
Tenable Nessus
added 2023/02/19 12:0 a.m.44 views

Debian DSA-5355-1 : thunderbird - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5355 advisory. Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the stable distribution...

8.8CVSS8.3AI score0.00892EPSS
Exploits0References43
Rows per page
Query Builder