Redhat

Enterprise Linux Server Aus

1054 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2017-5404

Exploit
  • EPSS 23.67%
  • Published 11.06.2018 21:29:04
  • Last modified 21.11.2024 03:27:32

A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox < 52, Firefox ESR < 4...

5.3

CVE-2017-5405

Exploit
  • EPSS 2.35%
  • Published 11.06.2018 21:29:04
  • Last modified 21.11.2024 03:27:32

Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.

6.5

CVE-2017-5407

Exploit
  • EPSS 1.1%
  • Published 11.06.2018 21:29:04
  • Last modified 21.11.2024 03:27:33

Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violate...

5.3

CVE-2017-5408

Exploit
  • EPSS 1.07%
  • Published 11.06.2018 21:29:04
  • Last modified 21.11.2024 03:27:33

Video files loaded video captions cross-origin without checking for the presence of CORS headers permitting such cross-origin use, leading to potential information disclosure for video captions. This vulnerability affects Firefox < 52, Firefox ESR < ...

9.8

CVE-2017-5410

Exploit
  • EPSS 2.66%
  • Published 11.06.2018 21:29:04
  • Last modified 21.11.2024 03:27:34

Memory corruption resulting in a potentially exploitable crash during garbage collection of JavaScript due errors in how incremental sweeping is managed for memory cleanup. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52...

9.8

CVE-2017-5380

  • EPSS 2.03%
  • Published 11.06.2018 21:29:03
  • Last modified 21.11.2024 03:27:29

A potential use-after-free found through fuzzing during DOM manipulation of SVG content. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.

5.3

CVE-2017-5383

  • EPSS 2.44%
  • Published 11.06.2018 21:29:03
  • Last modified 21.11.2024 03:27:29

URLs containing certain unicode glyphs for alternative hyphens and quotes do not properly trigger punycode display, allowing for domain name spoofing attacks in the location bar. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and ...

7.5

CVE-2017-5386

Exploit
  • EPSS 1.19%
  • Published 11.06.2018 21:29:03
  • Last modified 21.11.2024 03:27:30

WebExtension scripts can use the "data:" protocol to affect pages loaded by other web extensions using this protocol, leading to potential data disclosure or privilege escalation in affected extensions. This vulnerability affects Firefox ESR < 45.7 a...

9.8

CVE-2017-5390

  • EPSS 1.84%
  • Published 11.06.2018 21:29:03
  • Last modified 21.11.2024 03:27:30

The JSON viewer in the Developer Tools uses insecure methods to create a communication channel for copying and viewing JSON or HTTP headers data, allowing for potential privilege escalation. This vulnerability affects Thunderbird < 45.7, Firefox ESR ...

9.8

CVE-2017-5396

Exploit
  • EPSS 1.7%
  • Published 11.06.2018 21:29:03
  • Last modified 21.11.2024 03:27:31

A use-after-free vulnerability in the Media Decoder when working with media files when some events are fired after the media elements are freed from memory. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.