Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/30 12:0 a.m.5 views

Azure Linux 3.0 Security Update: libxml2 (CVE-2025-49794)

The version of libxml2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-49794 advisory. - A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under...

9.1CVSS6.6AI score0.00669EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2025/05/12 12:0 a.m.13 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Privilege escalation in Firefox Updater CVE-2025-2817 firefox: thunderbird: Unsafe attribute access during XPath parsing CVE-2025-4087 firefox: thunderbird: Process isolation bypass using...

9.1CVSS8.2AI score0.00538EPSS
Exploits0References12
Mageia
Mageia
added 2025/05/08 6:51 p.m.32 views

Updated firefox packages fix security vulnerabilities

A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended frame, potentially enabling a sandbox escape, CVE-2025-4083. A vulnerability was identified in Firefox...

9.1CVSS8.3AI score0.00419EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2025/05/05 12:0 a.m.17 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Privilege escalation in Firefox Updater CVE-2025-2817 firefox: thunderbird: Unsafe attribute access during XPath parsing CVE-2025-4087 firefox:...

9.1CVSS10AI score0.00538EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/04/29 1:13 p.m.26 views

CVE-2025-4087 Unsafe attribute access during XPath parsing

A vulnerability was identified in Thunderbird where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and potentially, memory corruption. This vulnerability was fixed in Firefox 138, Firefox ESR 128.10,...

0.00267EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2025/04/29 12:0 a.m.10 views

Mozilla -- XPath parsing undefined behavior

[email protected] reports: A vulnerability was identified in Thunderbird where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and potentially, memory corruption...

4.8CVSS6.6AI score0.00267EPSS
Exploits0References1
Rows per page
Query Builder