Lucene search
K
SusecveRecent

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2771

Undefined behavior in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

7.5CVSS5.8AI score0.00483EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•3 views

SUSE CVE-2026-2772

Use-after-free in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.8CVSS5.8AI score0.00469EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•4 views

SUSE CVE-2026-2773

Incorrect boundary conditions in the Web Audio component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.8CVSS5.8AI score0.00599EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2774

Integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.8CVSS5.8AI score0.00543EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2775

Mitigation bypass in the DOM: HTML Parser component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.1CVSS5.8AI score0.00552EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•3 views

SUSE CVE-2026-2776

Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.3CVSS5.7AI score0.00483EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•4 views

SUSE CVE-2026-2777

Privilege escalation in the Messaging System component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.8CVSS5.8AI score0.00366EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•7 views

SUSE CVE-2026-2778

Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.3CVSS5.8AI score0.00483EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2779

Incorrect boundary conditions in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00604EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2780

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00339EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•4 views

SUSE CVE-2026-2781

Integer overflow in the Libraries component in NSS. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, Thunderbird 140.8, and Firefox ESR 115.35...

6.3CVSS5.8AI score0.0036EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•4 views

SUSE CVE-2026-2782

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00282EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2783

Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

4.3CVSS5.8AI score0.00285EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•4 views

SUSE CVE-2026-2784

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.0043EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•4 views

SUSE CVE-2026-2785

Invalid pointer in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00366EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•3 views

SUSE CVE-2026-2786

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00314EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•2 views

SUSE CVE-2026-2787

Use-after-free in the DOM: Window and Location component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00402EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2788

Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00416EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•4 views

SUSE CVE-2026-2789

Use-after-free in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

6.3CVSS5.8AI score0.00318EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•7 views

SUSE CVE-2026-2790

Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

4.2CVSS5.8AI score0.00229EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•3 views

SUSE CVE-2026-2791

Mitigation bypass in the Networking: Cache component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

5.4CVSS5.8AI score0.00402EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:27 a.m.•5 views

SUSE CVE-2026-2792

Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

8.8CVSS5.9AI score0.00313EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•6 views

SUSE CVE-2026-2793

Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

8.8CVSS5.9AI score0.00313EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•6 views

SUSE CVE-2026-2794

Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 148...

6.5CVSS5.8AI score0.00253EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•4 views

SUSE CVE-2026-2795

Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

8.8CVSS5.8AI score0.00247EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2796

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

8.8CVSS7.4AI score0.00625EPSS
Exploits2References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2797

Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

8.8CVSS5.8AI score0.00315EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2798

Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

8.8CVSS5.8AI score0.00248EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•5 views

SUSE CVE-2026-2799

Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

8.8CVSS5.8AI score0.00321EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2800

Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

5.4CVSS5.7AI score0.00307EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2801

Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

6.3CVSS5.8AI score0.00288EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•4 views

SUSE CVE-2026-2802

Race condition in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

7.5CVSS5.8AI score0.00139EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2803

Information disclosure, mitigation bypass in the Settings UI component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

5.4CVSS5.8AI score0.0025EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•4 views

SUSE CVE-2026-2804

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

6.3CVSS5.8AI score0.00288EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2805

Invalid pointer in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

6.3CVSS5.8AI score0.00404EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-2806

Uninitialized memory in the Graphics: Text component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

4.3CVSS5.8AI score0.00387EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•4 views

SUSE CVE-2026-2807

Memory safety bugs present in Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

8.8CVSS5.9AI score0.00245EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•4 views

SUSE CVE-2026-3061

Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

9.1CVSS5.8AI score0.00305EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•5 views

SUSE CVE-2026-3062

Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

9.8CVSS5.8AI score0.0034EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•4 views

SUSE CVE-2026-3063

Inappropriate implementation in DevTools in Google Chrome prior to 145.0.7632.116 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via DevTools. Chromium security severity: High...

8.8CVSS5.8AI score0.00184EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•5 views

SUSE CVE-2026-3099

A flaw was found in Libsoup. The server-side digest authentication implementation in the SoupAuthDomainDigest class does not properly track issued nonces or enforce the required incrementing nonce-count nc attribute. This vulnerability allows a remote attacker to capture a single valid...

7.3CVSS5.8AI score0.00355EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-3102

A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...

8.8CVSS5.5AI score0.03411EPSS
Exploits2References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:26 a.m.•3 views

SUSE CVE-2026-21863

Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious actor with access to the Valkey clusterbus port can send an invalid packet that may cause an out bound read, which might result in the system crashing. The Valkey clusterbus packet processin...

6.5CVSS6AI score0.00552EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/02/25 12:25 a.m.•5 views

SUSE CVE-2026-24481

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information disclosure vulnerability exists in ImageMagick's PSD Adobe Photoshop format handler. When processing a maliciously crafted PSD file containin...

7.5CVSS5.8AI score0.00348EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2026/02/25 12:25 a.m.•5 views

SUSE CVE-2026-24484

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

5.5CVSS5.8AI score0.00401EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/02/25 12:25 a.m.•4 views

SUSE CVE-2026-24485

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage function becomes trapped in an infinite loop while searching for the Sync marker, causing...

5.5CVSS5.8AI score0.00449EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/02/25 12:25 a.m.•8 views

SUSE CVE-2026-25576

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extract dimensions larg...

5.1CVSS5.9AI score0.00181EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/02/25 12:25 a.m.•4 views

SUSE CVE-2026-25637

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR image writer allows an attacker to exhaust process memory by providing a crafted image that results in small objects that are allocated but never...

5.3CVSS5.8AI score0.00384EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2026/02/25 12:24 a.m.•19 views

SUSE CVE-2026-25638

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in coders/msl.c. In the WriteMSLImage function of the msl.c file, resources are allocated. But the function returns early without releasing...

5.3CVSS5.8AI score0.00325EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2026/02/25 12:24 a.m.•4 views

SUSE CVE-2026-25794

ImageMagick is free and open-source software used for editing and manipulating digital images. WriteUHDRImage in coders/uhdr.c uses int arithmetic to compute the pixel buffer size. Prior to version 7.1.2-15, when image dimensions are large, the multiplication overflows 32-bit int, causing an...

8.2CVSS5.9AI score0.0042EPSS
Exploits0References3
Total number of security vulnerabilities59854