Search CVE reports
11 – 20 of 31849 results
CVE-2024-53976
Low priorityUnder certain circumstances, navigating to a webpage would result in the address missing from the location URL bar, making it unclear what the URL was for the loaded webpage. This vulnerability affects Firefox for iOS < 133.
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
| Package | 18.04 LTS |
|---|---|
| firefox | — |
| mozjs102 | — |
| mozjs115 | — |
| mozjs38 | Needs evaluation |
| mozjs52 | Ignored |
| mozjs68 | — |
| mozjs78 | — |
| mozjs91 | — |
| thunderbird | — |
CVE-2024-53620
Medium priorityA cross-site scripting (XSS) vulnerability in the Article module of SPIP v4.3.3 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Title parameter.
1 affected packages
spip
| Package | 18.04 LTS |
|---|---|
| spip | Needs evaluation |
CVE-2024-53619
Medium priorityAn authenticated arbitrary file upload vulnerability in the Documents module of SPIP v4.3.3 allows attackers to execute arbitrary code via uploading a crafted PDF file.
1 affected packages
spip
| Package | 18.04 LTS |
|---|---|
| spip | Needs evaluation |
CVE-2024-52337
Medium priorityA log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the...
1 affected packages
tuned
| Package | 18.04 LTS |
|---|---|
| tuned | Needs evaluation |
CVE-2024-52336
Medium priorityA script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute...
1 affected packages
tuned
| Package | 18.04 LTS |
|---|---|
| tuned | Needs evaluation |
CVE-2024-38819
Medium priorityA flaw was found in the Spring Framework. Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This flaw allows an attacker to craft...
1 affected packages
libspring-java
| Package | 18.04 LTS |
|---|---|
| libspring-java | Needs evaluation |
CVE-2024-11708
Medium priorityMissing thread synchronization primitives could have led to a data race on members of the PlaybackParams structure. This vulnerability affects Firefox < 133 and Thunderbird < 133.
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
| Package | 18.04 LTS |
|---|---|
| firefox | — |
| mozjs102 | — |
| mozjs115 | — |
| mozjs38 | Needs evaluation |
| mozjs52 | Ignored |
| mozjs68 | — |
| mozjs78 | — |
| mozjs91 | — |
| thunderbird | — |
CVE-2024-11706
Medium priorityA null pointer dereference may have inadvertently occurred in `pk12util`, and specifically in the `SEC_ASN1DecodeItem_Util` function, when handling malformed or improperly formatted input files. This vulnerability affects Firefox...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
| Package | 18.04 LTS |
|---|---|
| firefox | — |
| mozjs102 | — |
| mozjs115 | — |
| mozjs38 | Needs evaluation |
| mozjs52 | Ignored |
| mozjs68 | — |
| mozjs78 | — |
| mozjs91 | — |
| thunderbird | — |
CVE-2024-11705
Medium priority`NSC_DeriveKey` inadvertently assumed that the `phKey` parameter is always non-NULL. When it was passed as NULL, a segmentation fault (SEGV) occurred, leading to crashes. This behavior conflicted with the PKCS#11...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
| Package | 18.04 LTS |
|---|---|
| firefox | — |
| mozjs102 | — |
| mozjs115 | — |
| mozjs38 | Needs evaluation |
| mozjs52 | Ignored |
| mozjs68 | — |
| mozjs78 | — |
| mozjs91 | — |
| thunderbird | — |
CVE-2024-11704
Medium priorityA double-free issue could have occurred in `sec_pkcs7_decoder_start_decrypt()` when handling an error path. Under specific conditions, the same symmetric key could have been freed twice, potentially leading to memory corruption....
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
| Package | 18.04 LTS |
|---|---|
| firefox | — |
| mozjs102 | — |
| mozjs115 | — |
| mozjs38 | Needs evaluation |
| mozjs52 | Ignored |
| mozjs68 | — |
| mozjs78 | — |
| mozjs91 | — |
| thunderbird | — |