Уязвимость GHSA-xxh5-92qj-c4gh

CVE-2018-12397

CVSS3: 7.1

ubuntu

больше 6 лет назад

A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. This vulnerability affects Firefox ESR < 60.3 and Firefox < 63.

CVE-2018-12397

CVSS3: 7.1

redhat

почти 7 лет назад

A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. This vulnerability affects Firefox ESR < 60.3 and Firefox < 63.

CVE-2018-12397

CVSS3: 7.1

nvd

больше 6 лет назад

A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. This vulnerability affects Firefox ESR < 60.3 and Firefox < 63.

CVE-2018-12397

CVSS3: 7.1

debian

больше 6 лет назад

A WebExtension can request access to local files without the warning p ...

BDU:2019-04300

CVSS3: 7.1

fstec

почти 7 лет назад

Уязвимость системы для разработки дополнений WebExtensions браузеров Firefox, Firefox ESR, позволяющая нарушителю получить несанкционированный доступ к локальным файлам

exploitDog

GHSA-xxh5-92qj-c4gh

Описание

Ссылки

CVE ID

Дефекты

Связанные уязвимости

CVE ID

Дефекты