Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-18497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to...

6.5CVSS6.9AI score0.01422EPSS
Exploits0References2
OSV
OSV
added 2019/02/28 6:29 p.m.3 views

CVE-2018-18497

Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to load multiple pages as a single argument. This could allow a malicious WebExtension to open privileged about: or file: locations. This...

6.5CVSS7.3AI score0.01422EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2019/02/28 6:0 p.m.27 views

CVE-2018-18497

Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to load multiple pages as a single argument. This could allow a malicious WebExtension to open privileged about: or file: locations. This...

6.5CVSS8AI score0.01422EPSS
Exploits0
CVE
CVE
added 2019/02/28 6:0 p.m.144 views

CVE-2018-18497

CVE-2018-18497 : In Firefox, limitations on URIs allowed to WebExtensions via the browser.windows.create API can be bypassed by placing a pipe in the URL field, causing multiple pages to load as a single argument. This may allow a malicious WebExtension to open privileged locations such as about:...

6.5CVSS6.6AI score0.01422EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2018/12/12 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-3844-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.09646EPSS
Exploits1References2
Rows per page
Query Builder