Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-25740: Invalid Bug ID

After downloading a Windows <code>.scf</code> script from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This also had the potential to leak NTLM credentials to the resource.<br>This bug only affects Firefox for Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 110.

CVE
#vulnerability#windows#firefox

Sorry, I can’t find "1812354?cve=title". It does not seem like bug number nor an alias to a bug.

Please press Back and try again.

Related news

CVE-2023-25732: Security Vulnerabilities fixed in Firefox 110

When encoding data from an <code>inputStream</code> in <code>xpcom</code> the size of the input being encoded was not correctly calculated potentially leading to an out of bounds memory write. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907