Описание
Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.
Ссылки
- Permissions Required
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 140.9.0 (исключая)Версия до 149.0 (исключая)
Одно из
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
EPSS
Процентиль: 7%
0.00024
Низкий
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-288
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 2 месяцев назад
Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.
CVSS3: 7.5
redhat
около 2 месяцев назад
Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.
CVSS3: 9.8
debian
около 2 месяцев назад
Mitigation bypass in the Networking: HTTP component. This vulnerabilit ...
CVSS3: 9.8
github
около 2 месяцев назад
Mitigation bypass in the Networking: HTTP component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9.
EPSS
Процентиль: 7%
0.00024
Низкий
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-288