Описание
A vulnerability where the security wrapper does not deny access to some exposed properties using the deprecated "exposedProps" mechanism on proxy objects. These properties should be explicitly unavailable to proxy objects. This vulnerability affects Firefox < 57.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 57.0+build4-0ubuntu0.17.10.5 |
| bionic | released | 57.0.1+build2-0ubuntu1 |
| cosmic | released | 57.0.1+build2-0ubuntu1 |
| devel | released | 57.0.1+build2-0ubuntu1 |
| disco | released | 57.0.1+build2-0ubuntu1 |
| eoan | released | 57.0.1+build2-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [57.0+build4-0ubuntu0.14.04.4]] |
| esm-infra/focal | DNE | |
| focal | released | 57.0.1+build2-0ubuntu1 |
| groovy | released | 57.0.1+build2-0ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needs-triage |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-apps/bionic | ignored | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was deferred |
| cosmic | ignored | end of life |
| devel | DNE | |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/focal | ignored | upstream wontfix |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | ignored | upstream wontfix |
| focal | ignored | end of standard support, was deferred |
Показывать по
EPSS
5 Medium
CVSS2
5.3 Medium
CVSS3
Связанные уязвимости
A vulnerability where the security wrapper does not deny access to some exposed properties using the deprecated "_exposedProps_" mechanism on proxy objects. These properties should be explicitly unavailable to proxy objects. This vulnerability affects Firefox < 57.
A vulnerability where the security wrapper does not deny access to som ...
A vulnerability where the security wrapper does not deny access to some exposed properties using the deprecated "_exposedProps_" mechanism on proxy objects. These properties should be explicitly unavailable to proxy objects. This vulnerability affects Firefox < 57.
Уязвимость механизма _exposedProps_ браузера Mozilla Firefox, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
EPSS
5 Medium
CVSS2
5.3 Medium
CVSS3