Lucene search
K

52 matches found

Mozilla
Mozilla
added 2022/09/20 12:0 a.m.313 views

Security Vulnerabilities fixed in Firefox 105 — Mozilla

An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash. During iframe navigation, certain pages did not have their FeaturePolicy fully initialized leading to a bypass that leaked device permissions into untrusted subdocuments. Concurrent use of t...

6.5CVSS1.8AI score0.01284EPSS
Exploits0References9Affected Software1
RedHat Linux
RedHat Linux
added 2022/05/04 11:20 a.m.4 views

Mozilla: iframe Sandbox bypass

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Firefox not protecting against top-level navigations for an iframe sandbox with a policy relaxed through a keyword likely to allow top-navigation-by-user-activation...

6.1CVSS7.2AI score0.00561EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/01/12 11:23 p.m.62 views

CVE-2022-22743

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

7.5CVSS2.2AI score0.00643EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/01/12 1:9 p.m.4 views

Mozilla: Browser window spoof using fullscreen mode

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

4.3CVSS7.3AI score0.00643EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/12 12:4 p.m.4 views

Mozilla: Browser window spoof using fullscreen mode

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

4.3CVSS7.3AI score0.00643EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/12 12:4 p.m.5 views

Mozilla: Browser window spoof using fullscreen mode

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

4.3CVSS7.3AI score0.00643EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/12 11:59 a.m.2 views

Mozilla: Browser window spoof using fullscreen mode

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

4.3CVSS7.3AI score0.00643EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/12 11:48 a.m.2 views

Mozilla: Browser window spoof using fullscreen mode

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

4.3CVSS7.3AI score0.00643EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/12 10:26 a.m.4 views

Mozilla: Browser window spoof using fullscreen mode

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

4.3CVSS7.3AI score0.00643EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/01/11 12:0 a.m.36 views

Mozilla Firefox ESR < 91.5

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 91.5. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-02 advisory. - Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyso...

10CVSS7.8AI score0.01344EPSS
Exploits6References15
CNVD
CNVD
added 2017/11/15 12:0 a.m.2 views

Mozilla Firefox Cross-Origin URL Information Disclosure Vulnerability

Mozilla Firefox browser Firefox is a free, open source browser for Windows, Linux and MacOSX platforms. A cross-origin URL information disclosure vulnerability exists in Mozilla Firefox versions prior to 57.0. The vulnerability arises because the Resource Timing API incorrectly discloses navigati...

6.5CVSS6AI score0.02485EPSS
Exploits0References1
CNVD
CNVD
added 2015/09/06 12:0 a.m.3 views

Google Chrome Blink Information Disclosure Vulnerability (CNVD-2015-05857)

Google Chrome is a WEB-based browser. A security vulnerability in the FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Google Chrome Blink allows remote attackers to construct malicious WEB page and trick users into parsing it, which can be...

5CVSS8.7AI score0.01747EPSS
Exploits0References1
Rows per page
Query Builder