Lucene search
+L
AlpinelinuxRecent

13033 matches found

alpinelinux
alpinelinux
•added 2026/02/24 4:6 p.m.•5 views

CVE-2026-27585

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, the path sanitization routine in file matcher doesn't sanitize backslashes which can lead to bypassing path related security protections. It affects users with specific Caddy and environment configurations...

8.2CVSS5.5AI score0.00323EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/24 3:59 p.m.•8 views

CVE-2026-27571

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The WebSockets handling of NATS messages handles compressed messages via the WebSockets negotiated compression. Prior to versions 2.11.2 and 2.12.3, the implementation bound the memory size of a NATS...

7.5CVSS5.8AI score0.00478EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•7 views

CVE-2026-2807

Memory safety bugs present in Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS5.9AI score0.00245EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•5 views

CVE-2026-2806

Uninitialized memory in the Graphics: Text component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.1CVSS5.8AI score0.00387EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•6 views

CVE-2026-2804

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

5.4CVSS5.8AI score0.00288EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•5 views

CVE-2026-2805

Invalid pointer in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS5.8AI score0.00404EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•7 views

CVE-2026-2803

Information disclosure, mitigation bypass in the Settings UI component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

7.5CVSS5.8AI score0.0025EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•22 views

CVE-2026-2802

Race condition in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

4.2CVSS5.8AI score0.00139EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•6 views

CVE-2026-2801

Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

7.5CVSS5.8AI score0.00288EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2800

Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS5.7AI score0.00307EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2798

Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

8.8CVSS5.8AI score0.00248EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•5 views

CVE-2026-2799

Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS5.8AI score0.00321EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•16 views

CVE-2026-2797

Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS5.8AI score0.00315EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2795

Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS5.8AI score0.00247EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2796

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS7.4AI score0.00625EPSS
Exploits2References3
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2794

Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 148...

7.5CVSS5.8AI score0.00253EPSS
Exploits0References2
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2634

Malicious scripts could cause desynchronization between the address bar and web content before a response is received in Firefox iOS, allowing attacker-controlled pages to be presented under spoofed domains. This vulnerability was fixed in Firefox for iOS 147.4...

9.8CVSS5.7AI score0.00308EPSS
Exploits0References2
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•5 views

CVE-2026-2793

Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

9.8CVSS5.9AI score0.00313EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2792

Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

9.8CVSS5.9AI score0.00313EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2791

Mitigation bypass in the Networking: Cache component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00402EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•5 views

CVE-2026-2790

Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00229EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2789

Use-after-free in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00318EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2788

Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00416EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2787

Use-after-free in the DOM: Window and Location component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00402EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2786

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00314EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2785

Invalid pointer in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00366EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2784

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.0043EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•1 views

CVE-2026-2783

Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

7.5CVSS5.8AI score0.00285EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•1 views

CVE-2026-2782

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00282EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2781

Integer overflow in the Libraries component in NSS. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, Thunderbird 140.8, and Firefox ESR 115.35...

9.8CVSS5.8AI score0.0036EPSS
Exploits0References7
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2780

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00339EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2779

Incorrect boundary conditions in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00604EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2778

Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

10CVSS5.8AI score0.00483EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2777

Privilege escalation in the Messaging System component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00366EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2776

Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

10CVSS5.7AI score0.00483EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2775

Mitigation bypass in the DOM: HTML Parser component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00552EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2774

Integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00543EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•6 views

CVE-2026-2773

Incorrect boundary conditions in the Web Audio component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00599EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2772

Use-after-free in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00469EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2771

Undefined behavior in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00483EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2770

Use-after-free in the DOM: Bindings WebIDL component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00469EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2768

Sandbox escape in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

10CVSS5.8AI score0.00366EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2769

Use-after-free in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.8CVSS5.8AI score0.00419EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2767

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00384EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2766

Use-after-free in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00469EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2764

JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00469EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2765

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00469EPSS
Exploits0References5
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2763

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00469EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•3 views

CVE-2026-2761

Sandbox escape in the Graphics: WebRender component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

10CVSS5.8AI score0.00395EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/24 1:33 p.m.•4 views

CVE-2026-2762

Integer overflow in the JavaScript: Standard Library component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00543EPSS
Exploits0References5
Total number of security vulnerabilities13033