Lucene search
MozillaCVELIST:CVE-2018-5116HistoryJun 11, 2018 - 9:00 p.m.
CVE-2018-5116
2018-06-1121:00:00
mozilla
www.cve.org
WebExtensions with the “ActiveTab” permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with this permission. This vulnerability affects Firefox < 58.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "58",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2018-06-11 21:29:00
nvd
nvd
CVE-2018-5116
2018-06-11 21:29:13
ubuntucve
ubuntucve
CVE-2018-5116
2018-01-23 00:00:00
debiancve
debiancve
CVE-2018-5116
2018-06-11 21:29:13
cve
cve
CVE-2018-5116
2018-06-11 21:29:13
ubuntu
ubuntu
Firefox regressions
2018-02-12 00:00:00
Firefox vulnerabilities
2018-01-24 00:00:00
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS : Firefox vulnerabilities (USN-3544-1)
2018-01-25 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Firefox regressions (USN-3544-2)
2018-02-13 00:00:00
Mozilla Firefox < 58 Multiple Vulnerabilities (macOS)
2018-01-24 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3544-2)
2018-02-14 00:00:00
Mozilla Firefox Security Advisories (MFSA2018-02, MFSA2018-03) - Windows
2018-01-24 00:00:00
Mozilla Firefox Security Advisories (MFSA2018-02, MFSA2018-03) - Mac OS X
2018-01-24 00:00:00
kaspersky
kaspersky
KLA11184 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2018-01-23 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2018-01-23 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 58 — Mozilla
2018-01-23 00:00:00