Количество 28
Количество 28
openSUSE-SU-2019:1594-1
Security update for MozillaThunderbird
ELSA-2019-1696
ELSA-2019-1696: firefox security update (CRITICAL)
ELSA-2019-1604
ELSA-2019-1604: firefox security update (CRITICAL)
ELSA-2019-1603
ELSA-2019-1603: firefox security update (CRITICAL)
openSUSE-SU-2019:1606-1
Security update for MozillaThunderbird
SUSE-SU-2019:1683-1
Security update for MozillaThunderbird
ELSA-2019-1626
ELSA-2019-1626: thunderbird security update (IMPORTANT)
ELSA-2019-1624
ELSA-2019-1624: thunderbird security update (IMPORTANT)
ELSA-2019-1623
ELSA-2019-1623: thunderbird security update (IMPORTANT)
SUSE-SU-2019:14124-1
Security update for MozillaFirefox
CVE-2019-11708
Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer. This vulnerability affects Firefox ESR < 60.7.2, Firefox < 67.0.4, and Thunderbird < 60.7.2.
CVE-2019-11708
Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer. This vulnerability affects Firefox ESR < 60.7.2, Firefox < 67.0.4, and Thunderbird < 60.7.2.
CVE-2019-11708
Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer. This vulnerability affects Firefox ESR < 60.7.2, Firefox < 67.0.4, and Thunderbird < 60.7.2.
CVE-2019-11708
Insufficient vetting of parameters passed with the Prompt:Open IPC mes ...
CVE-2019-11707
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3, and Thunderbird < 60.7.2.
CVE-2019-11707
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3, and Thunderbird < 60.7.2.
CVE-2019-11707
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3, and Thunderbird < 60.7.2.
CVE-2019-11707
A type confusion vulnerability can occur when manipulating JavaScript ...
openSUSE-SU-2019:1595-1
Security update for MozillaFirefox
openSUSE-SU-2019:1593-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | openSUSE-SU-2019:1594-1 Security update for MozillaThunderbird | больше 6 лет назад | ||
| ELSA-2019-1696 ELSA-2019-1696: firefox security update (CRITICAL) | больше 6 лет назад | ||
| ELSA-2019-1604 ELSA-2019-1604: firefox security update (CRITICAL) | больше 6 лет назад | ||
| ELSA-2019-1603 ELSA-2019-1603: firefox security update (CRITICAL) | больше 6 лет назад | ||
| openSUSE-SU-2019:1606-1 Security update for MozillaThunderbird | больше 6 лет назад | ||
| SUSE-SU-2019:1683-1 Security update for MozillaThunderbird | больше 6 лет назад | ||
| ELSA-2019-1626 ELSA-2019-1626: thunderbird security update (IMPORTANT) | больше 6 лет назад | ||
| ELSA-2019-1624 ELSA-2019-1624: thunderbird security update (IMPORTANT) | больше 6 лет назад | ||
| ELSA-2019-1623 ELSA-2019-1623: thunderbird security update (IMPORTANT) | больше 6 лет назад | ||
| SUSE-SU-2019:14124-1 Security update for MozillaFirefox | больше 6 лет назад | ||
 | CVE-2019-11708 Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer. This vulnerability affects Firefox ESR < 60.7.2, Firefox < 67.0.4, and Thunderbird < 60.7.2. | CVSS3: 10 | 73% Высокий | больше 6 лет назад |
 | CVE-2019-11708 Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer. This vulnerability affects Firefox ESR < 60.7.2, Firefox < 67.0.4, and Thunderbird < 60.7.2. | CVSS3: 10 | 73% Высокий | больше 6 лет назад |
 | CVE-2019-11708 Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer. This vulnerability affects Firefox ESR < 60.7.2, Firefox < 67.0.4, and Thunderbird < 60.7.2. | CVSS3: 10 | 73% Высокий | больше 6 лет назад |
| CVE-2019-11708 Insufficient vetting of parameters passed with the Prompt:Open IPC mes ... | CVSS3: 10 | 73% Высокий | больше 6 лет назад |
| CVE-2019-11707 A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3, and Thunderbird < 60.7.2. | CVSS3: 8.8 | 85% Высокий | больше 6 лет назад |
| CVE-2019-11707 A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3, and Thunderbird < 60.7.2. | CVSS3: 8.8 | 85% Высокий | больше 6 лет назад |
| CVE-2019-11707 A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3, and Thunderbird < 60.7.2. | CVSS3: 8.8 | 85% Высокий | больше 6 лет назад |
| CVE-2019-11707 A type confusion vulnerability can occur when manipulating JavaScript ... | CVSS3: 8.8 | 85% Высокий | больше 6 лет назад |
| openSUSE-SU-2019:1595-1 Security update for MozillaFirefox | 73% Высокий | больше 6 лет назад | |
| openSUSE-SU-2019:1593-1 Security update for MozillaFirefox | 85% Высокий | больше 6 лет назад |
Уязвимостей на страницу