2 matches found
U.S. Dept Of Defense: [███████] Information disclosure due unauthenticated access to APIs and system browser functions
Multiple vulnerabilities were exposed in a Jira Server instance allowing unauthenticated access to APIs and system browser functions. This included the ability to run arbitrary code on an internal network server. Project categories, resolutions, and usernames could be listed without authenticatio...
The vulnerability of Firefox and Firefox ESR browsers stems from the absence of a delay in pop-up notifications, which allows attackers to gain unauthorized access to certain browser functions.
The vulnerability of Firefox and Firefox ESR browsers exists due to the absence of a delay in pop-up notifications. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to certain functions of the browser...