Описание
When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox < 115, Firefox ESR < 102.13, and Thunderbird < 102.13.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | code not present |
| esm-infra/focal | DNE | |
| focal | released | 115.0+build2-0ubuntu0.20.04.3 |
| jammy | not-affected | code not present |
| kinetic | ignored | end of life, was needs-triage |
| lunar | not-affected | code not present |
| trusty | ignored | end of standard support |
| upstream | released | 115.0-1 |
| xenial | ignored | end of standard support |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 1:102.13.0+build1-0ubuntu1 |
| esm-infra/focal | DNE | |
| focal | released | 1:102.13.0+build1-0ubuntu0.20.04.1 |
| jammy | released | 1:102.13.0+build1-0ubuntu0.22.04.1 |
| kinetic | released | 1:102.13.0+build1-0ubuntu0.22.10.1 |
| lunar | released | 1:102.13.0+build1-0ubuntu0.23.04.1 |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | ignored | end of standard support |
Показывать по
Ссылки на источники
7.8 High
CVSS3
Связанные уязвимости
When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox < 115, Firefox ESR < 102.13, and Thunderbird < 102.13.
When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox < 115, Firefox ESR < 102.13, and Thunderbird < 102.13.
When opening Diagcab files, Firefox did not warn the user that these f ...
When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox < 115, Firefox ESR < 102.13, and Thunderbird < 102.13.
Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с отсутствием предупреждения при открытии Diagcab-файлов, позволяющая нарушителю выполнить спуфинг-атаки
7.8 High
CVSS3