Lucene search
K

17 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Firefox and Thunderbird

Through the use of reportValidity and window.open, a plain-text validation message could be displayed on another origin, potentially causing confusion for users and allowing for spoofing attacks. This vulnerability affects Firefox 93, Thunderbird 91.2, and Firefox ESR 91.2...

6.5CVSS6.8AI score0.00531EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Firefox and Thunderbird

If an attacker could control the contents of an iframe that was sandboxed using allow-popups but not allow-scripts, they could create a link that, when clicked, would cause JavaScript execution, violating the sandboxing rules. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbi...

9.6CVSS6.7AI score0.00931EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 8 : thunderbird-91.2.0-1.el8.ML.1 (AXSA:2021-2482:19)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2482:19 advisory. Mozilla: Use-after-free in MessageTask CVE-2021-38496 Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2...

9.8CVSS8.3AI score0.01923EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:26 a.m.4 views

SUSE CVE-2022-29917

Mozilla developers Andrew McCreight, Gabriele Svelto, Tom Ritter and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 99 and Firefox ESR 91.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been...

7.5CVSS9.6AI score0.01005EPSS
Exploits1References9
OSV
OSV
added 2022/12/22 8:15 p.m.1 views

DEBIAN-CVE-2022-22751

Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink reported memory safety bugs present in Firefox 95 and Firefox ESR 91.4. Some of these bugs showed evidence of memory corruption and we presume that with...

8.8CVSS9AI score0.0087EPSS
Exploits0References1
OSV
OSV
added 2022/01/13 12:0 a.m.3 views

UBUNTU-CVE-2022-22751

Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink reported memory safety bugs present in Firefox 95 and Firefox ESR 91.4. Some of these bugs showed evidence of memory corruption and we presume that with...

8.8CVSS7.4AI score0.0087EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/12/09 2:46 p.m.8 views

Mozilla: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Thunderbird 91.3. Some of these bugs showed evidence o...

9.8CVSS7.5AI score0.01013EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/12/09 12:40 p.m.6 views

Mozilla: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Thunderbird 91.3. Some of these bugs showed evidence o...

9.8CVSS7.5AI score0.01013EPSS
Exploits1References6
OSV
OSV
added 2021/12/08 10:15 p.m.7 views

UBUNTU-CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

8.8CVSS7.3AI score0.00999EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/12/08 10:16 a.m.3 views

Mozilla: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Thunderbird 91.3. Some of these bugs showed evidence o...

9.8CVSS7.5AI score0.01013EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/12/08 10:13 a.m.3 views

Mozilla: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Thunderbird 91.3. Some of these bugs showed evidence o...

9.8CVSS7.5AI score0.01013EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/12/08 10:2 a.m.5 views

Mozilla: Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Thunderbird 91.3. Some of these bugs showed evidence o...

9.8CVSS7.5AI score0.01013EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/11/10 9:58 a.m.4 views

Mozilla: Permission Prompt could be overlaid, resulting in user confusion and potential spoofing

By displaying a form validity message in the correct location at the same time as a permission prompt such as for geolocation, the validity message could have obscured the prompt, resulting in the user potentially being tricked into granting the permission. This vulnerability affects Firefox 94,...

4.3CVSS7.3AI score0.01527EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/04 4:59 p.m.4 views

Mozilla: Permission Prompt could be overlaid, resulting in user confusion and potential spoofing

By displaying a form validity message in the correct location at the same time as a permission prompt such as for geolocation, the validity message could have obscured the prompt, resulting in the user potentially being tricked into granting the permission. This vulnerability affects Firefox 94,...

4.3CVSS7.3AI score0.01527EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/10/11 8:22 a.m.4 views

Mozilla: Use-after-free of nsLanguageAtomService object

During process shutdown, a document could have caused a use-after-free of a languages service object, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox 93, Thunderbird 91.2, and Firefox ESR 91.2...

7.5CVSS7.4AI score0.0142EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/08/16 10:44 a.m.3 views

Mozilla: Incorrect instruction reordering during JIT optimization

Instruction reordering resulted in a sequence of instructions that would cause an object to be incorrectly considered during garbage collection. This led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and...

8.8CVSS7.2AI score0.01386EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/08/16 9:47 a.m.3 views

Mozilla: Use-after-free media channels

A use-after-free vulnerability in media channels could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and Firefox 91...

8.8CVSS7.4AI score0.01451EPSS
Exploits1References4
Rows per page
Query Builder