Lucene search
+L

4 matches found

osv
osv
added 2022/12/22 8:15 p.m.3 views

DEBIAN-CVE-2022-22761

Web-accessible extension pages pages with a moz-extension:// scheme were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91.6...

8.8CVSS6.8AI score0.00743EPSS
Exploits0References1
redhat
redhat
added 2022/02/15 10:37 a.m.4 views

Mozilla: frame-ancestors Content Security Policy directive was not enforced for framed extension pages

The Mozilla Foundation Security Advisory describes this flaw as: Web-accessible extension pages pages with a moz-extension:// scheme were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy...

8.8CVSS7.3AI score0.00743EPSS
Exploits0References6
redhat
redhat
added 2022/02/15 10:20 a.m.2 views

Mozilla: frame-ancestors Content Security Policy directive was not enforced for framed extension pages

The Mozilla Foundation Security Advisory describes this flaw as: Web-accessible extension pages pages with a moz-extension:// scheme were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy...

8.8CVSS7.3AI score0.00743EPSS
Exploits0References6
redhat
redhat
added 2022/02/14 9:15 a.m.4 views

Mozilla: frame-ancestors Content Security Policy directive was not enforced for framed extension pages

The Mozilla Foundation Security Advisory describes this flaw as: Web-accessible extension pages pages with a moz-extension:// scheme were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy...

8.8CVSS7.3AI score0.00743EPSS
Exploits0References6
Rows per page
Query Builder