Lucene search
K

35 matches found

RedHat Linux
RedHat Linux
added 2025/05/08 7:58 p.m.8 views

firefox: thunderbird: Process isolation bypass using "javascript:" URI links in cross-origin frames

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended...

9.1CVSS7.4AI score0.00379EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/08 7:57 p.m.4 views

firefox: thunderbird: Process isolation bypass using "javascript:" URI links in cross-origin frames

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended...

9.1CVSS7.4AI score0.00379EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/08 7:55 p.m.3 views

firefox: thunderbird: Process isolation bypass using "javascript:" URI links in cross-origin frames

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended...

9.1CVSS7.4AI score0.00379EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/08 7:55 p.m.16 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.1CVSS6.7AI score0.00538EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/05/08 7:50 p.m.9 views

firefox: thunderbird: Process isolation bypass using "javascript:" URI links in cross-origin frames

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended...

9.1CVSS7.4AI score0.00379EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/05 11:22 a.m.6 views

firefox: thunderbird: Process isolation bypass using "javascript:" URI links in cross-origin frames

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended...

9.1CVSS7.4AI score0.00379EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/05 10:13 a.m.11 views

firefox: thunderbird: Process isolation bypass using "javascript:" URI links in cross-origin frames

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended...

9.1CVSS7.4AI score0.00379EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/05 1:37 a.m.4 views

firefox: thunderbird: Process isolation bypass using "javascript:" URI links in cross-origin frames

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended...

9.1CVSS7.4AI score0.00379EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/05/01 12:0 a.m.5 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2025:1414-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:1414-1 advisory. - Firefox Extended Support Release 128.10.0 ESR MFSA 2025-29 bsc1241621: CVE-2025-2817: Potential privilege escalation in Firefox Updater...

8.8CVSS7.8AI score0.00538EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:32 a.m.6 views

SUSE CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

9.8CVSS8.5AI score0.01183EPSS
Exploits0References4
NVD
NVD
added 2018/06/11 9:29 p.m.12 views

CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

9.8CVSS8.9AI score0.01183EPSS
Exploits0References5
OSV
OSV
added 2018/06/11 9:29 p.m.5 views

CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

9.8CVSS7.4AI score0.01183EPSS
Exploits0References5
CNVD
CNVD
added 2018/01/25 12:0 a.m.1 views

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2018-02234)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 58. A remote attacker could exploit the vulnerability to access frames across sources...

9.8CVSS8.7AI score0.01183EPSS
Exploits0References1
OSV
OSV
added 2018/01/23 12:0 a.m.3 views

UBUNTU-CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

9.8CVSS7.4AI score0.01183EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2018/01/23 12:0 a.m.21 views

CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

9.8CVSS7.3AI score0.01183EPSS
Exploits0References3
Rows per page
Query Builder