Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:32 a.m.4 views

SUSE CVE-2018-5105

WebExtensions can bypass user prompts to first save and then open an arbitrarily downloaded file. This can result in an executable file running with local user privileges without explicit user consent. This vulnerability affects Firefox 58...

7.8CVSS8.3AI score0.00423EPSS
Exploits0References4
OSV
OSV
added 2018/06/11 9:29 p.m.1 views

CVE-2018-5106

Style editor traffic in the Developer Tools can be routed through a service worker hosted on a third party website if a user selects error links when these tools are open. This can allow style editor information used within Developer Tools to leak cross-origin. This vulnerability affects Firefox ...

5.3CVSS7.3AI score0.01288EPSS
Exploits0References5
OSV
OSV
added 2018/06/11 9:29 p.m.4 views

CVE-2018-5109

An audio capture session can started under an incorrect origin from the site making the capture request. Users are still prompted to allow the request but the prompt can display the wrong origin, leading to user confusion about which site is making the request to capture an audio stream. This...

5.3CVSS5.6AI score0.00617EPSS
Exploits0References5
OSV
OSV
added 2018/06/11 9:29 p.m.5 views

CVE-2018-5112

Development Tools panels of an extension are required to load URLs for the panels as relative URLs from the extension manifest file but this requirement was not enforced in all instances. This could allow the development tools panel for the extension to load a URL that it should not be able to...

7.5CVSS7.3AI score0.02012EPSS
Exploits0References5
OSV
OSV
added 2018/06/11 9:29 p.m.0 views

CVE-2018-5090

Memory safety bugs were reported in Firefox 57. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 58...

9.8CVSS7.4AI score0.02274EPSS
Exploits0References5
CNVD
CNVD
added 2018/01/25 12:0 a.m.3 views

Mozilla Firefox and Firefox ESR Memory Misreference Vulnerability (CNVD-2018-02644)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A memory misreference vulnerability exists in the HTML media element in Mozilla Firefox versions...

9.8CVSS8.5AI score0.07157EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/25 12:0 a.m.2 views

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2018-02234)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 58. A remote attacker could exploit the vulnerability to access frames across sources...

9.8CVSS8.7AI score0.01183EPSS
Exploits0References1
OSV
OSV
added 2018/01/23 12:0 a.m.4 views

UBUNTU-CVE-2018-5105

WebExtensions can bypass user prompts to first save and then open an arbitrarily downloaded file. This can result in an executable file running with local user privileges without explicit user consent. This vulnerability affects Firefox 58...

7.8CVSS7.2AI score0.00423EPSS
Exploits0References4
Rows per page
Query Builder