Lucene search
K

6 matches found

AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Firefox, Thunderbird

An attacker could, through a specially crafted multipart response, execute arbitrary JavaScript under the resource://pdf.js origin. This would allow them to access PDF content from other origins. This access is limited to “same site” documents due to the Site Isolation feature on desktop clients,...

7.5CVSS7.2AI score0.00394EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/16 6:41 a.m.3 views

firefox: thunderbird: Cross-origin access to PDF contents through multipart responses

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://pdf.js origin. This could allow them to access cross-origin PDF content. This...

7.5CVSS7.5AI score0.00394EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/10/09 12:6 p.m.3 views

firefox: thunderbird: Cross-origin access to JSON contents through multipart responses

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://devtools origin. This could allow them to access cross-origin JSON content. This...

7.5CVSS7.5AI score0.00487EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/10/07 1:38 a.m.8 views

firefox: thunderbird: Cross-origin access to PDF contents through multipart responses

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://pdf.js origin. This could allow them to access cross-origin PDF content. This...

7.5CVSS7.5AI score0.00394EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/10/07 1:20 a.m.4 views

firefox: thunderbird: Cross-origin access to JSON contents through multipart responses

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://devtools origin. This could allow them to access cross-origin JSON content. This...

7.5CVSS7.5AI score0.00487EPSS
Exploits0References8
OSV
OSV
added 2024/10/03 12:0 a.m.11 views

UBUNTU-CVE-2024-9394

An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://devtools origin. This could allow them to access cross-origin JSON content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full...

7.5CVSS7.5AI score0.00487EPSS
Exploits0References12
Rows per page
Query Builder