фссп россии

Top products

The 15 most recently published vulnerabilities affecting фссп россии.

• CVE-2023-29545Similar to CVE-2023-28163, this time when choosing 'Save Link As', suggested filenames containing environment variable names would have resolved those in the context of the current user. *This bu...6.5Jun 19, 2023
• CVE-2023-29542A newline in a filename could have been used to bypass the file extension security mechanisms that replace malicious file extensions such as .lnk with .download. This could have led to accidental ...9.8Jun 19, 2023
• CVE-2023-29532A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced...5.5Jun 19, 2023
• CVE-2023-29531An attacker could have caused an out of bounds memory access using WebGL APIs, leading to memory corruption and a potentially exploitable crash. *This bug only affects Firefox and Thunderbird for...9.8Jun 19, 2023
• CVE-2023-29550Memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploit...8.8Jun 2, 2023
• CVE-2023-29548A wrong lowering instruction in the ARM64 Ion compiler resulted in a wrong optimization result. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for ...6.5Jun 2, 2023
• CVE-2023-29541Firefox did not properly handle downloads of files ending in <code>.desktop</code>, which can be interpreted to run attacker-controlled commands. <br>*This bug only affects Firefox for Linux on cer...8.8Jun 2, 2023
• CVE-2023-29539When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download at...8.8Jun 2, 2023
• CVE-2023-29536An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash....8.8Jun 2, 2023
• CVE-2023-29535Following a Garbage Collector compaction, weak maps may have been accessed before they were correctly traced. This resulted in memory corruption and a potentially exploitable crash. This vulnerabil...6.5Jun 2, 2023
• CVE-2023-29533A website could have obscured the fullscreen notification by using a combination of <code>window.open</code>, fullscreen requests, <code>window.name</code> assignments, and <code>setInterval</code>...4.3Jun 2, 2023
• CVE-2023-1945Unexpected data returned from the Safe Browsing API could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 102.10 and Firefox ESR < 102.10.6.5Jun 2, 2023
• CVE-2023-0547OCSP revocation status of recipient certificates was not checked when sending S/Mime encrypted email, and revoked certificates would be accepted. Thunderbird versions from 68 to 102.9.1 were affect...6.5Jun 2, 2023
• CVE-2023-30944Moodle: minor sql injection risk in external wiki method for listing pages5.6May 2, 2023
• CVE-2023-29479Ribose RNP before 0.16.3 may hang when the input is malformed.5.3Apr 24, 2023