Описание
Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via a data: URL that is mishandled during (1) shortcut opening or (2) BOOKMARK intent processing.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 43.0.4 (включая)
Одновременно
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.00322
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-17
Связанные уязвимости
CVSS3: 5.3
ubuntu
около 10 лет назад
Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via a data: URL that is mishandled during (1) shortcut opening or (2) BOOKMARK intent processing.
CVSS3: 5.3
debian
около 10 лет назад
Mozilla Firefox before 44.0 on Android allows remote attackers to spoo ...
CVSS3: 5.3
github
больше 3 лет назад
Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via a data: URL that is mishandled during (1) shortcut opening or (2) BOOKMARK intent processing.
EPSS
Процентиль: 55%
0.00322
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-17