Astra Linux – Vulnerability in Firefox

When using the Performance API, attackers were able to detect subtle differences between PerformanceEntries, thereby determining whether the target URL had undergone a redirect. This vulnerability affects Firefox 103...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition in the i915perfaddconfigioctl function that could lead to reuse after release...

CVE-2022-29915

The Performance API did not properly hide the fact whether a request cross-origin resource has observed redirects. This vulnerability affects Firefox 100...

The vulnerability of the Performance API interface of the Firefox browser allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Firefox browser’s API interface is related to the disclosure of information. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc USA. Google Chrome suffers from a resource management error vulnerability that stems from the Performance API reuse-after-release. A remote attacker could use this vulnerability to trick a victim into visiting a specially crafted web page, triggerin...

UBUNTU-CVE-2022-29915

The Performance API did not properly hide the fact whether a request cross-origin resource has observed redirects. This vulnerability affects Firefox 100...

Mozilla Firefox 信息泄露漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from an information disclosure vulnerability that stems from the fact that the performance API does not properly hide whether a redirect is noted for requesting a cross-domain...

Google Chrome 访问控制错误漏洞

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in the Google Chrome Performance API. An attacker can exploit this vulnerability to bypass security restrictions...

The vulnerability of the Performance API component in the Google Chrome web browser allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Performance API component in the Google Chrome web browser is related to the lack of protection for the transmitted data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

Apple iOS Webkit Performance API Behavioral Tracking Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A vulnerability in the Apple iOS Webkit Performance API handling allows attackers to construct malicious web pages that can be tricked into parsing, which can track a user's browsing history, web...