Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-1667

Malware in sbrugna...

4.3CVSS7.8AI score0.01171EPSS
Exploits0References8
OSV
OSV
added 2016/04/19 2:24 p.m.7 views

USN-2917-3 firefox regressions

USN-2917-1 fixed vulnerabilities in Firefox. This update caused several web compatibility regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Francis Gabriel discovered a buffer overflow during ASN.1 decoding in NSS. If a user were tricked in...

6.5AI score
Exploits0References2
Prion
Prion
added 2016/03/06 2:59 a.m.15 views

Path traversal

The Content Security Policy CSP implementation in Blink, as used in Google Chrome before 49.0.2623.75, does not ignore a URL's path component in the case of a ServiceWorker fetch, which allows remote attackers to obtain sensitive information about visited web pages by reading CSP violation report...

5CVSS6.1AI score0.02223EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2016/03/06 2:0 a.m.43 views

CVE-2016-2845

Removed by vendor...

5.3CVSS7.4AI score0.02223EPSS
Exploits0
OSV
OSV
added 2016/03/05 12:0 a.m.4 views

UBUNTU-CVE-2016-2845

The Content Security Policy CSP implementation in Blink, as used in Google Chrome before 49.0.2623.75, does not ignore a URL's path component in the case of a ServiceWorker fetch, which allows remote attackers to obtain sensitive information about visited web pages by reading CSP violation report...

5.3CVSS6.8AI score0.02223EPSS
Exploits0References8
Cvelist
Cvelist
added 2011/08/18 6:0 p.m.22 views

CVE-2011-2990

The implementation of Content Security Policy CSP violation reports in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, and possibly other products does not remove proxy-authorization credentials from the listed request headers, which allows attackers to obtain sensitive information by...

9.2AI score0.00961EPSS
Exploits1References6
Rows per page
Query Builder