Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2019-11702

Опубликовано: 11 июн. 2019
Источник: redhat
CVSS3: 6.1
EPSS Низкий

Описание

A hyperlink using protocols associated with Internet Explorer, such as IE.HTTP:, can be used to open local files at a known location with Internet Explorer if a user approves execution when prompted. Note: this issue only occurs on Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 67.0.2.

Отчет

This vulnerability only affects versions of Firefox on the Windows operating system. Red Hat Enterprise Linux is not affected.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6firefoxNot affected
Red Hat Enterprise Linux 6thunderbirdNot affected
Red Hat Enterprise Linux 7firefoxNot affected
Red Hat Enterprise Linux 7thunderbirdNot affected
Red Hat Enterprise Linux 8firefoxNot affected
Red Hat Enterprise Linux 8thunderbirdNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-552
https://bugzilla.redhat.com/show_bug.cgi?id=1721805Mozilla: IE protocols can be used to open known local files

EPSS

Процентиль: 59%
0.00379
Низкий

6.1 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2019-11702

CVSS3: 6.5
ubuntu
около 6 лет назад

A hyperlink using protocols associated with Internet Explorer, such as IE.HTTP:, can be used to open local files at a known location with Internet Explorer if a user approves execution when prompted. *Note: this issue only occurs on Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox < 67.0.2.

nvd логотип

CVE-2019-11702

CVSS3: 6.5
nvd
около 6 лет назад

A hyperlink using protocols associated with Internet Explorer, such as IE.HTTP:, can be used to open local files at a known location with Internet Explorer if a user approves execution when prompted. *Note: this issue only occurs on Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox < 67.0.2.

debian логотип

CVE-2019-11702

CVSS3: 6.5
debian
около 6 лет назад

A hyperlink using protocols associated with Internet Explorer, such as ...

github логотип

GHSA-wm33-w546-hfhw

github
больше 3 лет назад

A hyperlink using protocols associated with Internet Explorer, such as IE.HTTP:, can be used to open local files at a known location with Internet Explorer if a user approves execution when prompted. *Note: this issue only occurs on Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox < 67.0.2.

EPSS

Процентиль: 59%
0.00379
Низкий

6.1 Medium

CVSS3