Vulnerabilities > Redhat > Enterprise Linux Workstation > 7.0

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-08	CVE-2019-17022	Cross-site Scripting vulnerability in Mozilla Firefox and Firefox ESR When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer does not escape < and > characters. network mozilla canonical debian redhat CWE-79	4.3
2020-01-08	CVE-2019-17017	Type Confusion vulnerability in Mozilla Firefox and Firefox ESR Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. network mozilla canonical debian redhat CWE-843	6.8
2020-01-08	CVE-2019-17016	Cross-site Scripting vulnerability in Mozilla Firefox and Firefox ESR When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer incorrectly rewrites a @namespace rule. network mozilla debian canonical redhat CWE-79	4.3
2019-12-18	CVE-2018-1311	Use After Free vulnerability in multiple products The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. network high complexity apache redhat debian oracle CWE-416	8.1
2019-12-18	CVE-2019-8816	Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. network apple redhat CWE-787 critical	9.3
2019-12-18	CVE-2019-8815	Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. network apple redhat CWE-787 critical	9.3
2019-12-18	CVE-2019-8814	Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. network apple redhat CWE-787 critical	9.3
2019-12-18	CVE-2019-8689	Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. network apple redhat CWE-787 critical	9.3
2019-12-18	CVE-2019-8688	Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. network apple redhat CWE-787 critical	9.3
2019-12-18	CVE-2019-8684	Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. network apple redhat CWE-787 critical	9.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.