15 matches found
MiracleLinux 9 : thunderbird-128.4.0-1.el9_4.ML.1 (AXSA:2024-8973:27)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8973:27 advisory. firefox: thunderbird: History interface could have been used to cause a Denial of Service condition in the browser CVE-2024-10464 firefox:...
CVE-2022-39212
Nextcloud Talk is an open source chat, video & audio calls client for the Nextcloud platform. In affected versions an attacker could see the last video frame of any participant who has video disabled but a camera selected. It is recommended that the Nextcloud Talk app is upgraded to 13.0.8 or...
Important: thunderbird
Issue Overview: A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and Thunderbird 132. CVE-2024-10458 An attacker could have caused a...
Mageia: Security Advisory (MGASA-2024-0350)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2024-0349 Updated nspr, nss, firefox & rust packages fix security vulnerabilities
Permission leak via embed or object elements. CVE-2024-10458 Use-after-free in layout with accessibility. CVE-2024-10459 Confusing display of origin for external protocol handler prompt. CVE-2024-10460 XSS due to Content-Disposition being ignored in multipart/x-mixed-replace response...
Updated nspr, nss, firefox & rust packages fix security vulnerabilities
Permission leak via embed or object elements. CVE-2024-10458 Use-after-free in layout with accessibility. CVE-2024-10459 Confusing display of origin for external protocol handler prompt. CVE-2024-10460 XSS due to Content-Disposition being ignored in multipart/x-mixed-replace response...
firefox: thunderbird: Cross origin video frame leak
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: Video frames could have been leaked between origins in some situations...
AlmaLinux 9 : thunderbird (ALSA-2024:8793)
The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2024:8793 advisory. firefox: thunderbird: History interface could have been used to cause a Denial of Service condition in the browser CVE-2024-10464 firefox: thunderbird: XS...
firefox: thunderbird: Cross origin video frame leak
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: Video frames could have been leaked between origins in some situations...
RHEL 9 : thunderbird (RHSA-2024:8728)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:8728 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: History interface could have been used ...
firefox: thunderbird: Cross origin video frame leak
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: Video frames could have been leaked between origins in some situations...
SUSE CVE-2024-10463
Video frames could have been leaked between origins in some situations. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and Thunderbird 132...
DEBIAN-CVE-2024-10463
Video frames could have been leaked between origins in some situations. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and Thunderbird 132...
Mozilla Firefox ESR < 115.17
The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.17. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-57 advisory. - Video frames could have been leaked between origins in some situations. CVE-2024-10463 - A permission...
Mozilla Firefox ESR < 115.17
The version of Firefox ESR installed on the remote Windows host is prior to 115.17. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-57 advisory. - Video frames could have been leaked between origins in some situations. CVE-2024-10463 - A permission leak could...