Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-2605

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows...

5.9CVSS8AI score0.00583EPSS
Exploits0References2
Redos
Redosadded 2024/08/20 12:0 a.m.35 views

ROS-20240820-01

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code using a specially crafted w...

8.4CVSS8.1AI score0.00971EPSS
Exploits3
Tenable Nessus
Tenable Nessusadded 2024/04/29 12:0 a.m.28 views

Fedora 40 : thunderbird (2024-fc2ae12c31)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-fc2ae12c31 advisory. Update to 115.9.0 https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/ https://www.thunderbird.net/en-US/thunderbird/115.9.0/releasenotes/...

8.8CVSS7.3AI score0.01285EPSS
Exploits4References11
Veracode
Veracodeadded 2024/04/10 9:52 p.m.31 views

Arbitrary Code Execution

Firefox, Firefox ESR, Thunderbird are vulnerable to an Arbitrary Code Execution vulnerability. The vulnerability is due to leveraging the Windows Error Reporter to run arbitrary code, escaping the sandbox...

5.9CVSS6.7AI score0.00583EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessusadded 2024/04/09 12:0 a.m.26 views

SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2024:1147-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1147-1 advisory. - Mozilla Thunderbird 115.9 bsc1221327 - CVE-2024-0743: Crash in NSS TLS method - CVE-2024-2605:...

8.8CVSS6.9AI score0.01285EPSS
Exploits4References22
Tenable Nessus
Tenable Nessusadded 2024/03/28 12:0 a.m.22 views

SUSE SLED15: MozillaFirefox / MozillaFirefox-branding-upstream / etc (SUSE-SU-2024:1002-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1002-1 advisory. Firefox Extended Support Release 115.9.1esr ESR MFSA 2024-16 bsc1221850. - CVE-2024-29944:...

8.8CVSS6.9AI score0.047EPSS
Exploits5References42
BDU FSTEC
BDU FSTECadded 2024/03/27 12:0 a.m.4 views

The vulnerability in the Windows Error Reporter registration service allows a hacker to execute arbitrary code. This vulnerability affects browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird for Windows operating systems.

The vulnerability of the Windows Error Reporter registration service in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird on Windows operating systems is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to execute...

10CVSS7.3AI score0.00583EPSS
Exploits0References14Affected Software8
Tenable Nessus
Tenable Nessusadded 2024/03/27 12:0 a.m.37 views

Fedora 38 : thunderbird (2024-5d080305ab)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-5d080305ab advisory. Update to 115.9.0 https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/ https://www.thunderbird.net/en-US/thunderbird/115.9.0/releasenotes/...

8.8CVSS7.3AI score0.01285EPSS
Exploits4References11
Tenable Nessus
Tenable Nessusadded 2024/03/23 12:0 a.m.44 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2024:0971-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0971-1 advisory. Firefox Extended Support Release 115.9.0 ESR bsc1221327: - CVE-2024-0743: Crash in NSS TLS method bmo1867408. - CVE-2024-2605:...

8.8CVSS6.9AI score0.01285EPSS
Exploits4References22
RedhatCVE
RedhatCVEadded 2024/03/21 11:0 a.m.39 views

CVE-2024-2605

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected...

7.5CVSS7.1AI score0.00583EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2024/03/21 3:50 a.m.4 views

SUSE CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

5.9CVSS8.8AI score0.00583EPSS
Exploits0References7
CNVD
CNVDadded 2024/03/21 12:0 a.m.31 views

Code execution vulnerability in multiple Mozilla products (CNVD-2024-14974)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products that...

5.9CVSS7.8AI score0.00583EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/03/20 12:0 a.m.37 views

Fedora 39 : firefox (2024-113454b56b)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-113454b56b advisory. - Updated to 124.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

9.8CVSS7.3AI score0.01107EPSS
Exploits6References13
Tenable Nessus
Tenable Nessusadded 2024/03/20 12:0 a.m.31 views

Fedora 38 : firefox (2024-7e71e9eaba)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-7e71e9eaba advisory. - Updated to 124.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

9.8CVSS7.3AI score0.01107EPSS
Exploits6References13
OSV
OSVadded 2024/03/19 12:15 p.m.2 views

CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

5.9CVSS6.1AI score0.00583EPSS
Exploits0References4
NVD
NVDadded 2024/03/19 12:15 p.m.21 views

CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

5.9CVSS6.9AI score0.00583EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/03/19 12:2 p.m.52 views

CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

7.1AI score0.00583EPSS
Exploits0References4
CVE
CVEadded 2024/03/19 12:2 p.m.336 views

CVE-2024-2605

CVE-2024-2605 affects Firefox and related Mozilla products on Windows, where the Windows Error Reporter can be abused as a sandbox escape to run arbitrary code. The description states affected versions: Firefox < 124, Firefox ESR < 115.9, and Thunderbird

5.9CVSS6.8AI score0.00583EPSS
Exploits0References4Affected Software2
UbuntuCve
UbuntuCveadded 2024/03/19 12:0 a.m.29 views

CVE-2024-2605

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

5.9CVSS7AI score0.00583EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2024/03/19 12:0 a.m.33 views

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2024-079-03)

The version of mozilla-thunderbird installed on the remote host is prior to 115.9.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-079-03 advisory. - NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could...

8.8CVSS8.5AI score0.01285EPSS
Exploits4References11
Rows per page
Query Builder