Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

AstraLinux
AstraLinuxadded 2025/06/16 11:28 a.m.2 views

Astra Linux – Vulnerability in Firefox

An inconsistent comparator in xslt/txNodeSorter could have led to potentially exploitable out-of-bounds access. This issue only affected versions 122 and later. This vulnerability was fixed in Firefox 136, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

8.1CVSS7.8AI score0.00391EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2025/03/10 6:17 a.m.5 views

firefox: AudioIPC StreamData could trigger a use-after-free in the Browser process

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: On Windows, a compromised content process could use bad StreamData sent over AudioIPC to trigger a use-after-free in the Browser process. This could have led to a sandbox escape...

8.8CVSS7.3AI score0.00373EPSS
Exploits0References8
RedHat Linux
RedHat Linuxadded 2025/03/10 5:26 a.m.7 views

firefox: Clickjacking the registerProtocolHandler info-bar Reporter

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A web page could trick a user into setting that site as the default handler for a custom URL protocol...

4.3CVSS6.5AI score0.00316EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2025/03/07 2:38 a.m.2 views

SUSE CVE-2025-1943

Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 136 and Thunderbird 136...

8.2CVSS7.4AI score0.00404EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2025/03/05 2:31 a.m.3 views

SUSE CVE-2025-1930

On Windows, a compromised content process could use bad StreamData sent over AudioIPC to trigger a use-after-free in the Browser process. This could have led to a sandbox escape. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird...

8.3CVSS7.3AI score0.00373EPSS
Exploits0References11
SUSE CVE
SUSE CVEadded 2025/03/05 2:31 a.m.3 views

SUSE CVE-2025-1935

A web page could trick a user into setting that site as the default handler for a custom URL protocol. This vulnerability was fixed in Firefox 136, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

4.3CVSS6.6AI score0.00316EPSS
Exploits0References12
OSV
OSVadded 2025/03/04 2:15 p.m.0 views

UBUNTU-CVE-2025-1930

On Windows, a compromised content process could use bad StreamData sent over AudioIPC to trigger a use-after-free in the Browser process. This could have led to a sandbox escape. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird...

8.8CVSS6.9AI score0.00373EPSS
Exploits0References11
Rows per page
Query Builder