Lucene search
K

7 matches found

Mozilla
Mozilla
added 2018/09/05 12:0 a.m.537 views

Security vulnerabilities fixed in Firefox 62 — Mozilla

A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the timer is deleted while still in use. This results in a potentially exploitable crash. A use-after-free vulnerability can occur when an IndexedDB index is deleted while...

9.8CVSS7.5AI score0.03662EPSS
Exploits5References10Affected Software1
NVD
NVD
added 2018/06/11 9:29 p.m.26 views

CVE-2017-7770

A mechanism where when a new tab is loaded through JavaScript events, if fullscreen mode is then entered, the addressbar will not be rendered. This would allow a malicious site to displayed a spoofed addressbar, showing the location of an arbitrary website instead of the one loaded. Note: this...

5.9CVSS5.2AI score0.01147EPSS
Exploits0References4
NVD
NVD
added 2018/06/11 9:29 p.m.12 views

CVE-2017-5452

Malicious sites can display a spoofed addressbar on a page when the existing location bar on the new page is scrolled out of view if an HTML editable page element is user selected. Note: This attack only affects Firefox for Android. Other operating systems are not affected. This vulnerability...

4.3CVSS3.8AI score0.01213EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2018/06/11 9:29 p.m.29 views

CVE-2017-5452

Malicious sites can display a spoofed addressbar on a page when the existing location bar on the new page is scrolled out of view if an HTML editable page element is user selected. Note: This attack only affects Firefox for Android. Other operating systems are not affected. This vulnerability...

4.3CVSS6.8AI score0.01213EPSS
Exploits1References2
CVE
CVE
added 2018/06/11 9:0 p.m.63 views

CVE-2017-5452

CVE-2017-5452 affects Firefox for Android prior to version 53. The issue allows a spoofed address bar on a page when the new page’s location bar is scrolled out of view if an HTML editable element is user-selected. Remediation per the advisory is upgrading to Firefox 53 or newer (the fixed versio...

4.3CVSS5.6AI score0.01213EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.25 views

CVE-2017-7770

A mechanism where when a new tab is loaded through JavaScript events, if fullscreen mode is then entered, the addressbar will not be rendered. This would allow a malicious site to displayed a spoofed addressbar, showing the location of an arbitrary website instead of the one loaded. Note: this...

6.1AI score0.01147EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.26 views

CVE-2017-5452

Malicious sites can display a spoofed addressbar on a page when the existing location bar on the new page is scrolled out of view if an HTML editable page element is user selected. Note: This attack only affects Firefox for Android. Other operating systems are not affected. This vulnerability...

5.8AI score0.01213EPSS
Exploits1References4
Rows per page
Query Builder