Lucene search

K
ubuntucveUbuntu.comUB:CVE-2019-11699
HistoryMay 21, 2019 - 12:00 a.m.

CVE-2019-11699

2019-05-2100:00:00
ubuntu.com
ubuntu.com
10

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

33.4%

A malicious page can briefly cause the wrong name to be highlighted as the
domain name in the addressbar during page navigations. This could result in
user confusion of which site is currently loaded for spoofing attacks. This
vulnerability affects Firefox < 67.

Notes

Author Note
tyhicks mozjs contains a copy of the SpiderMonkey JavaScript engine
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchmozjs52< anyUNKNOWN
ubuntu20.04noarchmozjs52< anyUNKNOWN
ubuntu20.10noarchfirefox< 67.0+build2-0ubuntu1UNKNOWN
ubuntu22.10noarchfirefox< 67.0+build2-0ubuntu1UNKNOWN
ubuntu18.04noarchfirefox< 67.0+build2-0ubuntu0.18.04.1UNKNOWN
ubuntu18.10noarchfirefox< 67.0+build2-0ubuntu0.18.10.1UNKNOWN
ubuntu19.04noarchfirefox< 67.0+build2-0ubuntu0.19.04.1UNKNOWN
ubuntu19.10noarchfirefox< 67.0+build2-0ubuntu1UNKNOWN
ubuntu20.04noarchfirefox< 67.0+build2-0ubuntu1UNKNOWN
ubuntu21.04noarchfirefox< 67.0+build2-0ubuntu1UNKNOWN
Rows per page:
1-10 of 161

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

33.4%