DEBIAN-CVE-2020-12419

When processing callbacks that occurred during window flushing in the parent process, the associated window may die; causing a use-after-free condition. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox ESR 68.10, Firefox 78, and...

Netskope Client Command Injection Vulnerability

Netskope Client is a client program for connecting to and managing the Netskope Cloud Platform from Netskope USA. A command injection vulnerability exists in the connection handling functionality in Netskope Client versions 57 prior to 57.2.0.219 and 60 prior to 60.2.0.214. The vulnerability aris...

CVE-2019-12091

The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The connection handling function in this service suffers from command injection vulnerability. Local users can use this vulnerability to...

cPanel Input Validation Error Vulnerability (CNVD-2019-27603)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An input validation error vulnerability exists in versions of cPanel prior to 60.0.25. The vulnerability stems from a web-based...

Mozilla Firefox and Mozilla Firefox ESR Timing Attack Vulnerability

Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. A security vulnerability exists in Mozilla Firefox versions prior to 67 and...