Lucene search

K

MozillaCVELIST:CVE-2019-9797

HistoryApr 26, 2019 - 4:13 p.m.

CVE-2019-9797

2019-04-2616:13:22

mozilla

www.cve.org

1

5.9 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.1%

Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a canvas element. This vulnerability affects Firefox < 66.

CNA Affected

[
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "66",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.html

lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.html

lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.html

access.redhat.com/errata/RHSA-2019:1265

access.redhat.com/errata/RHSA-2019:1267

access.redhat.com/errata/RHSA-2019:1269

access.redhat.com/errata/RHSA-2019:1308

access.redhat.com/errata/RHSA-2019:1309

access.redhat.com/errata/RHSA-2019:1310

bugzilla.mozilla.org/show_bug.cgi?id=1528909

lists.debian.org/debian-lts-announce/2019/05/msg00032.html

lists.debian.org/debian-lts-announce/2019/05/msg00038.html

seclists.org/bugtraq/2019/May/56

seclists.org/bugtraq/2019/May/59

seclists.org/bugtraq/2019/May/67

usn.ubuntu.com/3997-1/

www.debian.org/security/2019/dsa-4448

www.debian.org/security/2019/dsa-4451

www.mozilla.org/security/advisories/mfsa2019-07/

5.9 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.1%

Related for CVELIST:CVE-2019-9797