Lucene search
K

47 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-41055

Malicious code in bioql PyPI...

6.5CVSS8.1AI score0.00361EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.17 views

Rocky Linux 8 : firefox (RLSA-2022:6175)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:6175 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8AI score0.00905EPSS
Exploits0References11
Amazon
Amazon
added 2023/09/25 12:0 a.m.6 views

Important: firefox

Issue Overview: A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Mozilla developers and the Mozilla Fuzzing Team reporting memory safety bugs in Firefox 102. Some of these bugs showed evidence of memory corruption, and we presume that with enough effort...

8.8CVSS9.9AI score0.00905EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.2 views

SUSE CVE-2022-38472

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

7.5CVSS8.8AI score0.00361EPSS
Exploits0References12
NVD
NVD
added 2022/12/22 8:15 p.m.19 views

CVE-2022-38472

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

6.5CVSS0.00361EPSS
Exploits0References6
OSV
OSV
added 2022/12/22 8:15 p.m.8 views

CVE-2022-38472

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

6.5CVSS8.2AI score
Exploits0References6
Prion
Prion
added 2022/12/22 8:15 p.m.26 views

Design/Logic Flaw

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

4.3CVSS6.7AI score0.00361EPSS
Exploits0References6Affected Software3
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.24 views

CVE-2022-38472

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

7.2AI score0.00361EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2022/12/22 12:0 a.m.24 views

CVE-2022-38472

An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird 102.2,...

6.5CVSS7.4AI score0.00361EPSS
Exploits0
Amazon
Amazon
added 2022/10/11 12:0 a.m.25 views

Important: thunderbird

Issue Overview: A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Mozilla developers and the Mozilla Fuzzing Team reporting memory safety bugs in Firefox 102. Some of these bugs showed evidence of memory corruption, and we presume that with enough effort...

8.8CVSS9AI score0.00905EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/09/06 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:3030-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.5AI score0.00905EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/09/05 12:0 a.m.30 views

Debian dla-3097 : thunderbird - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3097 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3097-1 [email protected]...

8.8CVSS8AI score0.00905EPSS
Exploits0References8
Veracode
Veracode
added 2022/09/04 11:42 a.m.20 views

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution. The vulnerability exists due to address bar spoofing via XSLT error handling which allows an attacker to execute arbitrary code on the system...

6.5CVSS8.4AI score0.00361EPSS
Exploits0References9Affected Software5
Tenable Nessus
Tenable Nessus
added 2022/09/03 12:0 a.m.37 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:3007-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3007-1 advisory. Firefox Extended Support Release 91.13.0 ESR bsc1202645: - CVE-2022-38472: Fixed a potential address bar spoofing via XSLT error...

8.8CVSS6.9AI score0.00905EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/09/02 12:0 a.m.33 views

SUSE SLES15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2022:2984-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2984-1 advisory. Firefox Extended Support Release 91.13.0 ESR bsc1202645: - CVE-2022-38472: Fixed a potential address bar spoofing via XSLT error...

8.8CVSS6.9AI score0.00905EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.37 views

CentOS 7 : firefox (RHSA-2022:6179)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6179 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.30 views

CentOS 7 : thunderbird (RHSA-2022:6169)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6169 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/08/31 12:0 a.m.26 views

AlmaLinux 8 : firefox (ALSA-2022:6175)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6175 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8.1AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/08/31 12:0 a.m.25 views

AlmaLinux 8 : thunderbird (ALSA-2022:6164)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6164 advisory. - An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar...

8.8CVSS8.1AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/08/29 12:0 a.m.35 views

Debian DSA-5221-1 : thunderbird - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5221 advisory. Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the stable distribution...

8.8CVSS8.1AI score0.00905EPSS
Exploits0References9
Rows per page
Query Builder