Количество 22
Количество 22
GHSA-w7p8-wf2r-rw5h
A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
CVE-2020-26951
A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
CVE-2020-26951
A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
CVE-2020-26951
A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
CVE-2020-26951
A parsing and event loading mismatch in Firefox's SVG code could have ...
BDU:2020-05537
Уязвимость синтаксического анализа и загрузки событий в коде SVG веб-браузера Firefox и почтового клиента Thunderbird, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)
ELSA-2020-5257
ELSA-2020-5257: firefox security update (IMPORTANT)
ELSA-2020-5239
ELSA-2020-5239: firefox security update (IMPORTANT)
ELSA-2020-5238
ELSA-2020-5238: thunderbird security update (IMPORTANT)
ELSA-2020-5237
ELSA-2020-5237: firefox security update (IMPORTANT)
ELSA-2020-5236
ELSA-2020-5236: thunderbird security update (IMPORTANT)
ELSA-2020-5235
ELSA-2020-5235: thunderbird security update (IMPORTANT)
openSUSE-SU-2020:2315-1
Security update for MozillaFirefox
openSUSE-SU-2020:2187-1
Security update for MozillaThunderbird
openSUSE-SU-2020:2096-1
Security update for MozillaThunderbird
openSUSE-SU-2020:2031-1
Security update for MozillaFirefox
openSUSE-SU-2020:2020-1
Security update for MozillaFirefox
SUSE-SU-2020:3548-1
Security update for MozillaFirefox
SUSE-SU-2020:3528-1
Security update for MozillaThunderbird
SUSE-SU-2020:3458-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-w7p8-wf2r-rw5h A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5. | 0% Низкий | больше 3 лет назад | |
 | CVE-2020-26951 A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5. | CVSS3: 6.1 | 0% Низкий | около 5 лет назад |
 | CVE-2020-26951 A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5. | CVSS3: 6.1 | 0% Низкий | около 5 лет назад |
 | CVE-2020-26951 A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5. | CVSS3: 6.1 | 0% Низкий | около 5 лет назад |
| CVE-2020-26951 A parsing and event loading mismatch in Firefox's SVG code could have ... | CVSS3: 6.1 | 0% Низкий | около 5 лет назад |
 | BDU:2020-05537 Уязвимость синтаксического анализа и загрузки событий в коде SVG веб-браузера Firefox и почтового клиента Thunderbird, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS) | CVSS3: 7.5 | 0% Низкий | около 5 лет назад |
| ELSA-2020-5257 ELSA-2020-5257: firefox security update (IMPORTANT) | около 5 лет назад | ||
| ELSA-2020-5239 ELSA-2020-5239: firefox security update (IMPORTANT) | около 5 лет назад | ||
| ELSA-2020-5238 ELSA-2020-5238: thunderbird security update (IMPORTANT) | около 5 лет назад | ||
| ELSA-2020-5237 ELSA-2020-5237: firefox security update (IMPORTANT) | около 5 лет назад | ||
| ELSA-2020-5236 ELSA-2020-5236: thunderbird security update (IMPORTANT) | около 5 лет назад | ||
| ELSA-2020-5235 ELSA-2020-5235: thunderbird security update (IMPORTANT) | около 5 лет назад | ||
 | openSUSE-SU-2020:2315-1 Security update for MozillaFirefox | около 5 лет назад | ||
| openSUSE-SU-2020:2187-1 Security update for MozillaThunderbird | около 5 лет назад | ||
| openSUSE-SU-2020:2096-1 Security update for MozillaThunderbird | около 5 лет назад | ||
| openSUSE-SU-2020:2031-1 Security update for MozillaFirefox | около 5 лет назад | ||
| openSUSE-SU-2020:2020-1 Security update for MozillaFirefox | около 5 лет назад | ||
| SUSE-SU-2020:3548-1 Security update for MozillaFirefox | около 5 лет назад | ||
| SUSE-SU-2020:3528-1 Security update for MozillaThunderbird | около 5 лет назад | ||
| SUSE-SU-2020:3458-1 Security update for MozillaFirefox | около 5 лет назад |
Уязвимостей на страницу