Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2022/05/20 11:18 p.m.24 views

CVE-2019-13075

Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser's language via vectors involving an IFRAME element, because text in that language is included in the title attribute of a LINK element for a non-HTML page. This is related to a...

5.3CVSS5.2AI score0.01856EPSS
Exploits1References1
OSV
OSV
added 2019/08/16 12:0 a.m.1 views

UBUNTU-CVE-2019-11733

When a master password is set, it is required to be entered again before stored passwords can be accessed in the 'Saved Logins' dialog. It was found that locally stored passwords can be copied to the clipboard thorough the 'copy password' context menu item without re-entering the master password ...

9.8CVSS6.8AI score0.01411EPSS
Exploits0References4
OSV
OSV
added 2019/07/23 2:15 p.m.3 views

CVE-2019-11728

The HTTP Alternative Services header, Alt-Svc, can be used by a malicious site to scan all TCP ports of any host that the accessible to a user when web content is loaded. This vulnerability affects Firefox 68...

4.7CVSS6.7AI score0.01117EPSS
Exploits0References7
OSV
OSV
added 2019/07/23 2:15 p.m.2 views

CVE-2019-11720

Some unicode characters are incorrectly treated as whitespace during the parsing of web content instead of triggering parsing errors. This allows malicious code to then be processed, evading cross-site scripting XSS filtering. This vulnerability affects Firefox 68...

6.1CVSS6.9AI score0.01085EPSS
Exploits0References7
OSV
OSV
added 2019/07/23 2:15 p.m.4 views

CVE-2019-11723

A vulnerability exists during the installation of add-ons where the initial fetch ignored the origin attributes of the browsing context. This could leak cookies in private browsing mode or across different "containers" for people who use the Firefox Multi-Account Containers Web Extension. This...

7.5CVSS7.3AI score
Exploits0References7
RedHat Linux
RedHat Linux
added 2019/07/15 12:45 p.m.5 views

Mozilla: Sandbox escape via installation of malicious language pack

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.3CVSS7.3AI score0.02574EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/07/11 6:17 p.m.5 views

Mozilla: Sandbox escape via installation of malicious language pack

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.3CVSS7.3AI score0.02574EPSS
Exploits1References5
OSV
OSV
added 2019/07/11 12:0 a.m.4 views

UBUNTU-CVE-2019-11714

Necko can access a child on the wrong thread during UDP connections, resulting in a potentially exploitable crash in some instances. This vulnerability affects Firefox 68...

9.8CVSS7.3AI score0.01707EPSS
Exploits0References4
NVD
NVD
added 2019/06/30 2:15 p.m.30 views

CVE-2019-13075

Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser's language via vectors involving an IFRAME element, because text in that language is included in the title attribute of a LINK element for a non-HTML page. This is related to a...

5.3CVSS5AI score0.01856EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2019/06/30 1:47 p.m.26 views

CVE-2019-13075

Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser's language via vectors involving an IFRAME element, because text in that language is included in the title attribute of a LINK element for a non-HTML page. This is related to a...

5.3CVSS5AI score0.01856EPSS
Exploits1
Rows per page
Query Builder