CVE-2015-7214

Опубликовано: 16 дек. 2015

Источник: redhat

CVSS2: 4.3

EPSS Низкий

Описание

Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to bypass the Same Origin Policy via data: and view-source: URIs.

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=1291600Mozilla: Cross-site reading attack through data: and view-source: URIs (MFSA 2015-149)

EPSS

Процентиль: 90%

0.06135

Низкий

4.3 Medium

CVSS2

CVE-2015-7214

ubuntu

больше 9 лет назад

Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to bypass the Same Origin Policy via data: and view-source: URIs.

CVE-2015-7214

nvd

больше 9 лет назад

Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to bypass the Same Origin Policy via data: and view-source: URIs.

CVE-2015-7214

debian

больше 9 лет назад

Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow rem ...

GHSA-p6rv-hx36-fjv2

github

около 3 лет назад

Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to bypass the Same Origin Policy via data: and view-source: URIs.

BDU:2015-12246

fstec

больше 9 лет назад

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти существующую политику ограничения доступа

EPSS

Процентиль: 90%

0.06135

Низкий

4.3 Medium

CVSS2