exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 33

BDU:2025-07724

30 дней назад

Уязвимость расширения WebCompat браузеров Mozilla Firefox, Firefox ESR, позволяющая нарушителю раскрыть защищаемую информацию

CVSS3: 4.3

EPSS: Низкий

CVE-2025-6430

29 дней назад

When a file download is specified via the `Content-Disposition` header, that directive would be ignored if the file was included via a `<embed>` or `<object>` tag, potentially making a website vulnerable to a cross-site scripting attack. This vulnerability affects Firefox < 140, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.

CVSS3: 6.1

EPSS: Низкий

CVE-2025-6430

29 дней назад

CVSS3: 6.1

EPSS: Низкий

CVE-2025-6430

29 дней назад

CVSS3: 6.1

EPSS: Низкий

CVE-2025-6430

29 дней назад

When a file download is specified via the `Content-Disposition` header ...

CVSS3: 6.1

EPSS: Низкий

CVE-2025-6424

29 дней назад

A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability affects Firefox < 140, Firefox ESR < 115.25, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.

CVSS3: 9.8

EPSS: Низкий

CVE-2025-6424

29 дней назад

CVSS3: 7.5

EPSS: Низкий

CVE-2025-6424

29 дней назад

CVSS3: 9.8

EPSS: Низкий

CVE-2025-6424

29 дней назад

A use-after-free in FontFaceSet resulted in a potentially exploitable ...

CVSS3: 9.8

EPSS: Низкий

GHSA-fvqv-c5hj-jcrp

27 дней назад

CVSS3: 6.1

EPSS: Низкий

BDU:2025-07582

30 дней назад

Уязвимость компонента HTTP Header Handler браузеров Mozilla Firefox, Firefox ESR, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)

CVSS3: 6.1

EPSS: Низкий

GHSA-87c4-94w2-rw7j

27 дней назад

A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability affects Firefox < 140, Firefox ESR < 115.25, and Firefox ESR < 128.12.

CVSS3: 9.8

EPSS: Низкий

BDU:2025-07723

30 дней назад

Уязвимость интерфейса FontFaceSet браузеров Mozilla Firefox, Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2025-07724 Уязвимость расширения WebCompat браузеров Mozilla Firefox, Firefox ESR, позволяющая нарушителю раскрыть защищаемую информацию	CVSS3: 4.3	0% Низкий	30 дней назад
CVE-2025-6430 When a file download is specified via the `Content-Disposition` header, that directive would be ignored if the file was included via a `<embed>` or `<object>` tag, potentially making a website vulnerable to a cross-site scripting attack. This vulnerability affects Firefox < 140, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.	CVSS3: 6.1	0% Низкий	29 дней назад
CVE-2025-6430 When a file download is specified via the `Content-Disposition` header, that directive would be ignored if the file was included via a `<embed>` or `<object>` tag, potentially making a website vulnerable to a cross-site scripting attack. This vulnerability affects Firefox < 140, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.	CVSS3: 6.1	0% Низкий	29 дней назад
CVE-2025-6430 When a file download is specified via the `Content-Disposition` header, that directive would be ignored if the file was included via a `<embed>` or `<object>` tag, potentially making a website vulnerable to a cross-site scripting attack. This vulnerability affects Firefox < 140, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.	CVSS3: 6.1	0% Низкий	29 дней назад
CVE-2025-6430 When a file download is specified via the `Content-Disposition` header ...	CVSS3: 6.1	0% Низкий	29 дней назад
CVE-2025-6424 A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability affects Firefox < 140, Firefox ESR < 115.25, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.	CVSS3: 9.8	0% Низкий	29 дней назад
CVE-2025-6424 A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability affects Firefox < 140, Firefox ESR < 115.25, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.	CVSS3: 7.5	0% Низкий	29 дней назад
CVE-2025-6424 A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability affects Firefox < 140, Firefox ESR < 115.25, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.	CVSS3: 9.8	0% Низкий	29 дней назад
CVE-2025-6424 A use-after-free in FontFaceSet resulted in a potentially exploitable ...	CVSS3: 9.8	0% Низкий	29 дней назад
GHSA-fvqv-c5hj-jcrp When a file download is specified via the `Content-Disposition` header, that directive would be ignored if the file was included via a `<embed>` or `<object>` tag, potentially making a website vulnerable to a cross-site scripting attack. This vulnerability affects Firefox < 140 and Firefox ESR < 128.12.	CVSS3: 6.1	0% Низкий	27 дней назад
BDU:2025-07582 Уязвимость компонента HTTP Header Handler браузеров Mozilla Firefox, Firefox ESR, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)	CVSS3: 6.1	0% Низкий	30 дней назад
GHSA-87c4-94w2-rw7j A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability affects Firefox < 140, Firefox ESR < 115.25, and Firefox ESR < 128.12.	CVSS3: 9.8	0% Низкий	27 дней назад
BDU:2025-07723 Уязвимость интерфейса FontFaceSet браузеров Mozilla Firefox, Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.3	0% Низкий	30 дней назад

Уязвимостей на страницу