Количество 21
Количество 21
CVE-2023-25729
Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.
CVE-2023-25729
Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.
CVE-2023-25729
Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.
CVE-2023-25729
Permission prompts for opening external schemes were only shown for <c ...
GHSA-vhjv-4vf6-mc9x
Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.
BDU:2023-01271
Уязвимость браузеров Mozilla Firefox, Mozilla Firefox ESR, почтового клиента Mozilla Thunderbird, связанная с неправильной нейтрализаций закодированных схем URI на веб-странице, позволяющая нарушителю загрузить файлы или взаимодействовать с программным обеспечением, уже установленным в системе
ROS-20230315-01
Множественные уязвимости Mozilla thunderbird
RLSA-2023:0810
Important: firefox security update
RLSA-2023:0808
Important: firefox security update
ELSA-2023-0812
ELSA-2023-0812: firefox security update (IMPORTANT)
ELSA-2023-0810
ELSA-2023-0810: firefox security update (IMPORTANT)
ELSA-2023-0808
ELSA-2023-0808: firefox security update (IMPORTANT)
SUSE-SU-2023:0599-1
Security update for MozillaThunderbird
RLSA-2023:0824
Important: thunderbird security update
RLSA-2023:0821
Important: thunderbird security update
ELSA-2023-0824
ELSA-2023-0824: thunderbird security update (IMPORTANT)
ELSA-2023-0821
ELSA-2023-0821: thunderbird security update (IMPORTANT)
ELSA-2023-0817
ELSA-2023-0817: thunderbird security update (IMPORTANT)
SUSE-SU-2023:0469-1
Security update for MozillaFirefox
SUSE-SU-2023:0466-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-25729 Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8. | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-25729 Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8. | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-25729 Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8. | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
| CVE-2023-25729 Permission prompts for opening external schemes were only shown for <c ... | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
| GHSA-vhjv-4vf6-mc9x Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to open them without user interaction via <code>ExpandedPrincipals</code>. This could lead to further malicious actions such as downloading files or interacting with software already installed on the system. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8. | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
 | BDU:2023-01271 Уязвимость браузеров Mozilla Firefox, Mozilla Firefox ESR, почтового клиента Mozilla Thunderbird, связанная с неправильной нейтрализаций закодированных схем URI на веб-странице, позволяющая нарушителю загрузить файлы или взаимодействовать с программным обеспечением, уже установленным в системе | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
 | ROS-20230315-01 Множественные уязвимости Mozilla thunderbird | CVSS3: 7.5 | больше 2 лет назад | |
 | RLSA-2023:0810 Important: firefox security update | больше 2 лет назад | ||
| RLSA-2023:0808 Important: firefox security update | больше 2 лет назад | ||
| ELSA-2023-0812 ELSA-2023-0812: firefox security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-0810 ELSA-2023-0810: firefox security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-0808 ELSA-2023-0808: firefox security update (IMPORTANT) | больше 2 лет назад | ||
 | SUSE-SU-2023:0599-1 Security update for MozillaThunderbird | больше 2 лет назад | ||
| RLSA-2023:0824 Important: thunderbird security update | больше 2 лет назад | ||
| RLSA-2023:0821 Important: thunderbird security update | больше 2 лет назад | ||
| ELSA-2023-0824 ELSA-2023-0824: thunderbird security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-0821 ELSA-2023-0821: thunderbird security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-0817 ELSA-2023-0817: thunderbird security update (IMPORTANT) | больше 2 лет назад | ||
| SUSE-SU-2023:0469-1 Security update for MozillaFirefox | больше 2 лет назад | ||
| SUSE-SU-2023:0466-1 Security update for MozillaFirefox | больше 2 лет назад |
Уязвимостей на страницу