Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-pjg4-cx24-6mjc

Опубликовано: 27 мая 2025
Источник: github
Github: Не прошло ревью
CVSS3: 4.3

Описание

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, and Firefox ESR < 128.11.

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, and Firefox ESR < 128.11.

EPSS

Процентиль: 8%
0.00033
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-346

Связанные уязвимости

CVSS3: 4.3
ubuntu
2 месяца назад

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, Firefox ESR < 128.11, Thunderbird < 139, and Thunderbird < 128.11.

CVSS3: 6.1
redhat
2 месяца назад

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, Firefox ESR < 128.11, Thunderbird < 139, and Thunderbird < 128.11.

CVSS3: 4.3
nvd
2 месяца назад

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, Firefox ESR < 128.11, Thunderbird < 139, and Thunderbird < 128.11.

CVSS3: 4.3
debian
2 месяца назад

Error handling for script execution was incorrectly isolated from web ...

CVSS3: 4.3
fstec
2 месяца назад

Уязвимость механизма CORS браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 8%
0.00033
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-346