Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-9801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Firefox will accept any registered Program ID as an external protocol handler and offer to launch this local application when given a matching URL on Windows...

5.3CVSS7.3AI score0.0131EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-9788

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers and community members reported memory safety bugs present in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5. Some of these bugs showed...

9.8CVSS8.4AI score0.02244EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-9790

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability can occur when a raw pointer to a DOM element on a page is obtained using JavaScript and the element is then removed while still ...

9.8CVSS8AI score0.01838EPSS
Exploits0References2
OSV
OSV
added 2020/03/25 10:15 p.m.2 views

DEBIAN-CVE-2020-6806

By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.6, Firefox 74, Firefox ESR68.6...

8.8CVSS8.7AI score0.02543EPSS
Exploits0References1
OSV
OSV
added 2019/09/04 12:0 a.m.5 views

UBUNTU-CVE-2019-11746

A use-after-free vulnerability can occur while manipulating video elements if the body is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Firefox 69, Thunderbird 68.1, Thunderbird 60.9, Firefox ESR 60.9, and Firefox ESR 68.1...

8.8CVSS7.3AI score0.01713EPSS
Exploits0References6
OSV
OSV
added 2019/07/11 12:0 a.m.4 views

UBUNTU-CVE-2019-11713

A use-after-free vulnerability can occur in HTTP/2 when a cached HTTP/2 stream is closed while still in use, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

9.8CVSS7.3AI score0.02149EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2019/06/03 8:52 p.m.3 views

Mozilla: Theft of user history data through drag and drop of hyperlinks to and from bookmarks

If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for...

5.3CVSS7.4AI score0.01392EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/05/23 4:8 p.m.2 views

Mozilla: Use-after-free of ChromeEventHandler by DocShell

A use-after-free vulnerability can occur in the chrome event handler when it is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7, Firefox 67, and Firefox ESR 60.7...

9.8CVSS7.3AI score0.01638EPSS
Exploits0References5
OSV
OSV
added 2019/04/26 5:29 p.m.3 views

DEBIAN-CVE-2019-9813

Incorrect handling of proto mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

8.8CVSS8AI score0.07387EPSS
Exploits4References1
RedHat Linux
RedHat Linux
added 2019/03/20 3:21 p.m.7 views

Mozilla: Use-after-free with SMIL animation controller

A use-after-free vulnerability can occur when the SMIL animation controller incorrectly registers with the refresh driver twice when only a single registration is expected. When a registration is later freed with the removal of the animation controller element, the refresh driver incorrectly leav...

9.8CVSS7.3AI score0.02043EPSS
Exploits0References5
OSV
OSV
added 2019/03/20 12:0 a.m.2 views

UBUNTU-CVE-2019-9788

Mozilla developers and community members reported memory safety bugs present in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This...

9.8CVSS7.3AI score0.02244EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2018/11/05 10:47 a.m.6 views

Mozilla: Use-after-free in driver timers

A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the timer is deleted while still in use. This results in a potentially exploitable crash. This vulnerability affects Firefox 62, Firefox ESR 60.2, and Thunderbird 60.2.1...

9.8CVSS7.3AI score0.03357EPSS
Exploits0References5
OSV
OSV
added 2018/10/18 1:29 p.m.2 views

DEBIAN-CVE-2018-5187

Memory safety bugs present in Firefox 60 and Firefox ESR 60. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird 60, Firefox ESR 60.1, and Firefox 61...

9.8CVSS9.7AI score0.0298EPSS
Exploits0References1
OSV
OSV
added 2018/06/27 12:0 a.m.2 views

UBUNTU-CVE-2018-12361

An integer overflow can occur in the SwizzleData code while calculating buffer sizes. The overflowed value is used for subsequent graphics computations when their inputs are not sanitized which results in a potentially exploitable crash. This vulnerability affects Thunderbird 60, Firefox ESR 60.1...

8.8CVSS7.5AI score0.02819EPSS
Exploits0References4
Rows per page
Query Builder