Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2015/10/26 12:0 a.m.27 views

openSUSE Security Update : MozillaFirefox (openSUSE-2015-678)

MozillaFirefox was updated to version 41.0.2 to fix one security issue. This security issue was fixed : - CVE-2015-7184: Cross-origin restriction bypass using Fetch bsc950686. These non-security issues were fixed : - Fix a startup crash related to Yandex toolbar and Adblock Plus bmo1209124 - Fix...

6.8CVSS8.4AI score0.01662EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linux
added 2015/10/24 2:9 a.m.35 views

Security update for MozillaFirefox (important)

MozillaFirefox was updated to version 41.0.2 to fix one security issue. This security issue was fixed: - CVE-2015-7184: Cross-origin restriction bypass using Fetch bsc950686. These non-security issues were fixed: Fix a startup crash related to Yandex toolbar and Adblock Plus bmo1209124 Fix...

6.8CVSS0.6AI score0.01662EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/24 12:0 a.m.25 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2015:1817-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.5AI score0.01662EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/10/19 12:0 a.m.23 views

Ubuntu 14.04 LTS : Firefox vulnerability (USN-2768-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2768-1 advisory. Abdulrahman Alqabandi and Ben Kelly discovered that the fetch API did not correctly implement the Cross Origin Resource Sharing CORS specification. If a user were...

6.8CVSS8.4AI score0.01662EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/10/18 10:59 a.m.29 views

CVE-2015-7184

The fetch API implementation in Mozilla Firefox before 41.0.2 does not restrict access to the HTTP response body in certain situations where user credentials are supplied but the CORS cross-origin request algorithm is improperly followed, which allows remote attackers to bypass the Same Origin...

6.8CVSS7.3AI score0.01662EPSS
Exploits0References3
CVE
CVE
added 2015/10/18 10:0 a.m.132 views

CVE-2015-7184

CVE-2015-7184 affects Mozilla Firefox before 41.0.2, where the fetch() API implementation did not adequately restrict access to the HTTP response body in certain cases when credentials are used. The issue arises from an improper handling of the CORS cross-origin request algorithm, allowing a remo...

6.8CVSS8.9AI score0.01662EPSS
Exploits0References8Affected Software1
Ubuntu
Ubuntu
added 2015/10/16 9:21 a.m.53 views

USN-2768-1: Firefox vulnerability

Abdulrahman Alqabandi and Ben Kelly discovered that the fetch API did not correctly implement the Cross Origin Resource Sharing CORS specification. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to obtain sensitive information from oth...

6.8CVSS8.4AI score0.01662EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/10/16 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-2768-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.5AI score0.01662EPSS
Exploits0References2
Rows per page
Query Builder