Vuldb Updates

A vulnerability, which was classified as critical, was found in Mozilla Thunderbird. Affected is the function FilePickerShownCallback of the component IPC. The manipulation leads to use after free. This vulnerability is traded as CVE-2023-4575. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Mozilla Firefox up to 116. This affects an unknown part of the component IPC FilePickerShownCallback. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2023-4575. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Mozilla Firefox up to 116. This issue affects the function UpdateRegExpStatics of the component JIT. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2023-4577. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird up to 115.1. It has been classified as problematic. Affected is an unknown function of the component Private Window. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2023-4583. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Mozilla Thunderbird up to 115.1 and classified as critical. Affected by this vulnerability is the function UpdateRegExpStatics of the component JIT. The manipulation leads to memory corruption. This vulnerability is known as CVE-2023-4577. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Mozilla Firefox up to 116. Affected is an unknown function of the component Private Window. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2023-4583. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Mozilla Firefox up to 111. Affected is an unknown function of the component Javascript Code Handler. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2023-29536. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Firefox. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2023-4050. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Mozilla Firefox. This issue affects some unknown processing of the component WASM JIT Analysis. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2023-4046. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Mozilla Firefox. Affected by this vulnerability is an unknown functionality. The manipulation leads to use after free. This vulnerability is known as CVE-2023-4049. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Mozilla Firefox up to 116 and classified as problematic. Affected by this vulnerability is the function JS::CheckRegExpSyntax of the component SpiderMonkey. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2023-4578. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird up to 115.1 and classified as critical. Affected by this issue is the function JS::CheckRegExpSyntax. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2023-4578. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Mozilla Firefox. Affected is an unknown function of the component Full Screen Notifications Handler. The manipulation leads to an unknown weakness. This vulnerability is traded as CVE-2023-4051. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird up to 115.1. It has been classified as problematic. This affects an unknown part of the component Push Notification. The manipulation leads to cleartext storage in a file or on disk. This vulnerability is uniquely identified as CVE-2023-4580. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Firefox up to 116. It has been classified as problematic. This affects an unknown part of the component Push Notification Handler. The manipulation leads to cleartext storage in a file or on disk. This vulnerability is uniquely identified as CVE-2023-4580. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Firefox. It has been classified as problematic. This affects an unknown part of the component Full Screen Notifications Handler. The manipulation leads to link following. This vulnerability is uniquely identified as CVE-2023-4053. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Mozilla Firefox. This vulnerability affects unknown code of the component Offscreen Canvas Handler. The manipulation leads to permissive cross-domain policy with untrusted domains. This vulnerability was named CVE-2023-4045. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird. It has been declared as critical. This vulnerability affects unknown code of the component XLL Add-In File. The manipulation leads to improper access controls. This vulnerability was named CVE-2023-4581. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Firefox up to 116. It has been declared as problematic. This vulnerability affects unknown code of the component XLL Add-In File Handler. The manipulation leads to improper access controls. This vulnerability was named CVE-2023-4581. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in ST ST54-android-packages-apps-Nfc on Android. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2023-36629. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.