Lucene search
K

4 matches found

AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Firefox, Thunderbird

An attacker could, through a specially crafted multipart response, execute arbitrary JavaScript under the resource://pdf.js origin. This would allow them to access PDF content from other origins. This access is limited to “same site” documents due to the Site Isolation feature on desktop clients,...

7.5CVSS7.2AI score0.00394EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/09 9:11 a.m.3 views

firefox: thunderbird: Cross-origin access to PDF contents through multipart responses

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://pdf.js origin. This could allow them to access cross-origin PDF content. This...

7.5CVSS7.5AI score0.00394EPSS
Exploits0References8
OSV
OSV
added 2024/10/07 3:43 a.m.9 views

USN-7056-1 firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. CVE-2024-9392, CVE-2024-9396,...

9.8CVSS7.1AI score0.00733EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2024/10/07 1:23 a.m.10 views

firefox: thunderbird: Cross-origin access to PDF contents through multipart responses

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://pdf.js origin. This could allow them to access cross-origin PDF content. This...

7.5CVSS7.5AI score0.00394EPSS
Exploits0References8
Rows per page
Query Builder