The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1499 advisory.

    Mozilla Thunderbird is a standalone mail and newsgroup client.

    This update upgrades Thunderbird to version 115.9.0.

    Security Fix(es):

    * nss: timing attack against RSA decryption (CVE-2023-5388)

    * Mozilla: Crash in NSS TLS method (CVE-2024-0743)

    * Mozilla: Leaking of encrypted email subjects to other conversations  (CVE-2024-1936)

    * Mozilla: JIT code failed to save return registers on Armv7-A (CVE-2024-2607)

    * Mozilla: Integer overflow could have led to out of bounds write     (CVE-2024-2608)

    * Mozilla: Improper handling of html and body tags enabled CSP nonce leakage     (CVE-2024-2610)

    * Mozilla: Clickjacking vulnerability could have led to a user accidentally     granting permissions (CVE-2024-2611)

    * Mozilla: Self referencing object could have potentially led to a     use-after-free (CVE-2024-2612)

    * Mozilla: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and     Thunderbird 115.9 (CVE-2024-2614)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1484 advisory.

    Mozilla Firefox is an open-source web browser, designed for standards     compliance, performance, and portability.

    This update upgrades Firefox to version 115.9.1 ESR.

    Security Fix(es):

    * nss: timing attack against RSA decryption (CVE-2023-5388)

    * Mozilla: Crash in NSS TLS method (CVE-2024-0743)

    * Mozilla: JIT code failed to save return registers on Armv7-A (CVE-2024-2607)

    * Mozilla: Integer overflow could have led to out of bounds write (CVE-2024-2608)

    * Mozilla: Improve handling of out-of-memory conditions in ICU (CVE-2024-2616)

    * Mozilla: Improper handling of html and body tags enabled CSP nonce leakage (CVE-2024-2610)

    * Mozilla: Clickjacking vulnerability could have led to a user accidentally granting permissions     (CVE-2024-2611)

    * Mozilla: Self referencing object could have potentially led to a use-after-free (CVE-2024-2612)

    * Mozilla: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9     (CVE-2024-2614)

    * Mozilla: Privileged JavaScript Execution via Event Handlers (CVE-2024-29944)

    For more details about the security issue(s), including the impact, a CVSS     score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References     section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1487 advisory.

    Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and     portability.

    This update upgrades Firefox to version 115.9.1 ESR.

    Security Fix(es):

    * nss: timing attack against RSA decryption (CVE-2023-5388)

    * Mozilla: Crash in NSS TLS method (CVE-2024-0743)

    * Mozilla: JIT code failed to save return registers on Armv7-A (CVE-2024-2607)

    * Mozilla: Integer overflow could have led to out of bounds write (CVE-2024-2608)

    * Mozilla: Improve handling of out-of-memory conditions in ICU (CVE-2024-2616)

    * Mozilla: Improper handling of html and body tags enabled CSP nonce leakage (CVE-2024-2610)

    * Mozilla: Clickjacking vulnerability could have led to a user accidentally granting permissions     (CVE-2024-2611)

    * Mozilla: Self referencing object could have potentially led to a use-after-free (CVE-2024-2612)

    * Mozilla: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9     (CVE-2024-2614)

    * Mozilla: Privileged JavaScript Execution via Event Handlers (CVE-2024-29944)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1491 advisory.

    Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and     portability.

    This update upgrades Firefox to version 115.9.1 ESR.

    Security Fix(es):

    * nss: timing attack against RSA decryption (CVE-2023-5388)

    * Mozilla: Crash in NSS TLS method (CVE-2024-0743)

    * Mozilla: JIT code failed to save return registers on Armv7-A (CVE-2024-2607)

    * Mozilla: Integer overflow could have led to out of bounds write (CVE-2024-2608)

    * Mozilla: Improve handling of out-of-memory conditions in ICU (CVE-2024-2616)

    * Mozilla: Improper handling of html and body tags enabled CSP nonce leakage (CVE-2024-2610)

    * Mozilla: Clickjacking vulnerability could have led to a user accidentally granting permissions     (CVE-2024-2611)

    * Mozilla: Self referencing object could have potentially led to a use-after-free (CVE-2024-2612)

    * Mozilla: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9     (CVE-2024-2614)

    * Mozilla: Privileged JavaScript Execution via Event Handlers (CVE-2024-29944)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1500 advisory.

    Mozilla Thunderbird is a standalone mail and newsgroup client.

    This update upgrades Thunderbird to version 115.9.0.

    Security Fix(es):

    * nss: timing attack against RSA decryption (CVE-2023-5388)

    * Mozilla: Crash in NSS TLS method (CVE-2024-0743)

    * Mozilla: Leaking of encrypted email subjects to other conversations  (CVE-2024-1936)

    * Mozilla: JIT code failed to save return registers on Armv7-A (CVE-2024-2607)

    * Mozilla: Integer overflow could have led to out of bounds write     (CVE-2024-2608)

    * Mozilla: Improper handling of html and body tags enabled CSP nonce leakage     (CVE-2024-2610)

    * Mozilla: Clickjacking vulnerability could have led to a user accidentally     granting permissions (CVE-2024-2611)

    * Mozilla: Self referencing object could have potentially led to a     use-after-free (CVE-2024-2612)

    * Mozilla: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and     Thunderbird 115.9 (CVE-2024-2614)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-1498 advisory.

    [115.9.0-1.0.1]
    - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js
    - Enabled aarch64 build

    [115.9.0-1]
    - Update to 115.9.0 build1
    - Fix expat CVE-2023-52425

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6717-1 advisory.

    Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially     crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of     service, obtain sensitive information, bypass security restrictions, cross-site tracing, or execute     arbitrary code. (CVE-2024-0743, CVE-2024-2611,

    CVE-2024-2614)

    Hubert Kario discovered that Thunderbird had a timing side-channel when

    performing RSA decryption. A remote attacker could possibly use this

    issue to recover sensitive information. (CVE-2023-5388)

    Gary Kwong discovered that Thunderbird incorrectly updated return

    registers for JIT code on Armv7-A systems. An attacker could potentially exploit this issue to execute     arbitrary code. (CVE-2024-2607)

    Ronald Crane discovered that Thunderbird did not properly manage memory during character encoding. An     attacker could potentially exploit this issue to cause a denial of service. (CVE-2024-2608)

    Georg Felber and Marco Squarcina discovered that Thunderbird incorrectly

    handled html and body tags. An attacker who was able to inject markup into a page otherwise protected by a     Content Security Policy may have been able

    obtain sensitive information. (CVE-2024-2610)

    Ronald Crane discovered a use-after-free in Thunderbird when handling code in SafeRefPtr. An attacker     could potentially exploit this issue to cause a

    denial of service, or execute arbitrary code. (CVE-2024-2612)

    Ryan VanderMeulen and Dan Minor discovered that Thunderbird did not properly manage memory conditions in     ICU. An attacker could potentially exploit this issue to cause a denial of service. (CVE-2024-2616)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:1484 advisory.

  - NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could     potentially allow an attacker to recover the private data. This vulnerability affects Firefox < 124,     Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2023-5388)

  - An unchecked return value in TLS handshake code could have caused a potentially exploitable crash. This     vulnerability affects Firefox < 122, Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2024-0743)

  - Return registers were overwritten which could have allowed an attacker to execute arbitrary code. *Note:*     This issue only affected Armv7-A systems. Other operating systems are unaffected. This vulnerability     affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2024-2607)

  - `AppendEncodedAttributeValue(), ExtraSpaceNeededForAttrEncoding()` and `AppendEncodedCharacters()` could     have experienced integer overflows, causing underallocation of an output buffer leading to an out of     bounds write. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.
    (CVE-2024-2608)

  - Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass     strict content security policies. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and     Thunderbird < 115.9. (CVE-2024-2610)

  - A missing delay on when pointer lock was used could have allowed a malicious page to trick a user into     granting permissions. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird <     115.9. (CVE-2024-2611)

  - If an attacker could find a way to trigger a particular code path in `SafeRefPtr`, it could have triggered     a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox < 124,     Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2024-2612)

  - Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs     showed evidence of memory corruption and we presume that with enough effort some of these could have been     exploited to run arbitrary code. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and     Thunderbird < 115.9. (CVE-2024-2614)

  - To harden ICU against exploitation, the behavior for out-of-memory conditions was changed to crash instead     of attempt to continue. This vulnerability affects Firefox ESR < 115.9 and Thunderbird < 115.9.
    (CVE-2024-2616)

  - An attacker was able to inject an event handler into a privileged object that would allow arbitrary     JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does     not affect mobile versions of Firefox. This vulnerability affects Firefox < 124.0.1 and Firefox ESR <     115.9.1. (CVE-2024-29944)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2024:1484 advisory.

  - NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could     potentially allow an attacker to recover the private data. This vulnerability affects Firefox < 124,     Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2023-5388)

  - An unchecked return value in TLS handshake code could have caused a potentially exploitable crash. This     vulnerability affects Firefox < 122, Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2024-0743)

  - Return registers were overwritten which could have allowed an attacker to execute arbitrary code. *Note:*     This issue only affected Armv7-A systems. Other operating systems are unaffected. This vulnerability     affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2024-2607)

  - `AppendEncodedAttributeValue(), ExtraSpaceNeededForAttrEncoding()` and `AppendEncodedCharacters()` could     have experienced integer overflows, causing underallocation of an output buffer leading to an out of     bounds write. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.
    (CVE-2024-2608)

  - Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass     strict content security policies. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and     Thunderbird < 115.9. (CVE-2024-2610)

  - A missing delay on when pointer lock was used could have allowed a malicious page to trick a user into     granting permissions. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird <     115.9. (CVE-2024-2611)

  - If an attacker could find a way to trigger a particular code path in `SafeRefPtr`, it could have triggered     a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox < 124,     Firefox ESR < 115.9, and Thunderbird < 115.9. (CVE-2024-2612)

  - Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs     showed evidence of memory corruption and we presume that with enough effort some of these could have been     exploited to run arbitrary code. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and     Thunderbird < 115.9. (CVE-2024-2614)

  - To harden ICU against exploitation, the behavior for out-of-memory conditions was changed to crash instead     of attempt to continue. This vulnerability affects Firefox ESR < 115.9 and Thunderbird < 115.9.
    (CVE-2024-2616)

  - An attacker was able to inject an event handler into a privileged object that would allow arbitrary     JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does     not affect mobile versions of Firefox. This vulnerability affects Firefox < 124.0.1 and Firefox ESR <     115.9.1. (CVE-2024-29944)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3937 advisory.

    - -------------------------------------------------------------------------     Debian LTS Advisory DLA-3937-1                debian-lts@lists.debian.org     https://www.debian.org/lts/security/              Arturo Borrero Gonzalez     October 27, 2024                              https://wiki.debian.org/LTS
    - -------------------------------------------------------------------------

    Package        : nss     Version        : 2:3.61-1+deb11u4     CVE ID         : CVE-2024-0743 CVE-2024-6602 CVE-2024-6609

    nss - Network Security Service libraries

    This is a set of libraries designed to support cross-platform development     of security-enabled client and server applications. It can support SSLv2     and  v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and     other security standards.

    Among other utilities, this package includes:
      * certutil: manages certificate and key databases (cert7.db and key3.db)
      * modutil: manages the database of PKCS11 modules (secmod.db)
      * pk12util: imports/exports keys and certificates between the cert/key         databases and files in PKCS12 format.
      * shlibsign: creates .chk files for use in FIPS mode.
      * signtool: creates digitally-signed jar archives containing files and/or         code.
      * ssltap: proxy requests for an SSL server and display the contents of         the messages exchanged between the client and server.

    CVE-2024-0743

        An unchecked return value in TLS handshake code could have caused         a potentially exploitable crash.

    CVE-2024-6602

        A mismatch between allocator and deallocator could have lead to         memory corruption.

    CVE-2024-6609

        When almost out-of-memory an elliptic curve key which was never         allocated could have been freed again.

    For Debian 11 bullseye, these problems have been fixed in version     2:3.61-1+deb11u4.

    We recommend that you upgrade your nss packages.

    For the detailed security status of nss please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/nss

    Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Published	Updated	Severity
192544	RHEL 8 : thunderbird (RHSA-2024:1499)	Nessus	Red Hat Local Security Checks	3/25/2024	4/2/2025	high
192548	RHEL 8 : firefox (RHSA-2024:1484)	Nessus	Red Hat Local Security Checks	3/25/2024	4/2/2025	high
192550	RHEL 9 : firefox (RHSA-2024:1487)	Nessus	Red Hat Local Security Checks	3/25/2024	4/2/2025	high
192551	RHEL 8 : firefox (RHSA-2024:1491)	Nessus	Red Hat Local Security Checks	3/25/2024	4/2/2025	high
192553	RHEL 8 : thunderbird (RHSA-2024:1500)	Nessus	Red Hat Local Security Checks	3/25/2024	4/2/2025	high
192574	Oracle Linux 7 : thunderbird (ELSA-2024-1498)	Nessus	Oracle Linux Local Security Checks	3/26/2024	9/9/2025	high
192576	Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : Thunderbird vulnerabilities (USN-6717-1)	Nessus	Ubuntu Local Security Checks	3/26/2024	4/2/2025	high
192613	Rocky Linux 8 : firefox (RLSA-2024:1484)	Nessus	Rocky Linux Local Security Checks	3/27/2024	4/2/2025	high
192980	CentOS 8 : firefox (CESA-2024:1484)	Nessus	CentOS Local Security Checks	4/8/2024	4/2/2025	high
209846	Debian dla-3937 : libnss3 - security update	Nessus	Debian Local Security Checks	10/28/2024	10/28/2024	high

Detections

Analytics

Plugins Search

high

high

high

high

high

high

high

high

high

high