|
161
|
4.3
-
|
MEDIUM
Network
|
A malicious installed WebExtension could open arbitrary URLs, which under the right circumstance could be leveraged to collect sensitive user data. This vulnerability affects Firefox < 119, Firefox E…
|
NVD-CWE-noinfo
|
CVE-2023-5725
|
cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:42
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
162
|
7.5
-
|
HIGH
Network
|
Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird <…
|
NVD-CWE-noinfo
|
CVE-2023-5724
|
cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:42
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
163
|
8.8
-
|
HIGH
Network
|
Use after free in Profiles in Google Chrome prior to 118.0.5993.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2023-5472
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:41
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
164
|
5.5
-
|
MEDIUM
Local
|
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines.
|
NVD-CWE-noinfo
|
CVE-2023-46316
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:28
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
165
|
7.5
-
|
HIGH
Network
|
Issue summary: A bug has been identified in the processing of key and
initialisation vector (IV) lengths. This can lead to potential truncation
or overruns during the initialisation of some symmetri…
|
NVD-CWE-noinfo
|
CVE-2023-5363
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-21 17:41
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
166
|
5.9
-
|
MEDIUM
Network
|
When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection c…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2023-45802
|
cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:27
2023-10-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
167
|
3.6
-
|
LOW
Local
|
Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions to the user-provided configuration. If a permissive umask(2)…
|
-
|
CVE-2023-45145
|
cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:26
2023-10-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
168
|
5.4
-
|
MEDIUM
Network
|
Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavi…
|
CWE-79
Cross-site Scripting
|
CVE-2023-5631
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:42
2023-10-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
169
|
7.5
-
|
HIGH
Adjacent
|
An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU.
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2023-45871
|
cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:27
2023-10-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
170
|
8.8
-
|
HIGH
Local
|
Babel is a compiler for writingJavaScript. In `@babel/traverse` prior to versions 7.23.2 and 8.0.0-alpha.4 and all versions of `babel-traverse`, using Babel to compile code that was specifically craf…
|
CWE-697
Incorrect Comparison
|
CVE-2023-45133
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:26
2023-10-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|