Количество 12
Количество 12
CVE-2017-5407
Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
CVE-2017-5407
Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
CVE-2017-5407
Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
CVE-2017-5407
Using SVG filters that don't use the fixed point math implementation o ...
GHSA-92cf-2847-r49w
Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
ELSA-2017-0498
ELSA-2017-0498: thunderbird security update (IMPORTANT)
ELSA-2017-0461
ELSA-2017-0461: firefox security update (CRITICAL)
ELSA-2017-0459
ELSA-2017-0459: firefox security update (CRITICAL)
SUSE-SU-2017:0732-1
Security update for MozillaFirefox
SUSE-SU-2017:0714-1
Security update for MozillaFirefox
openSUSE-SU-2017:0690-1
Security update for MozillaFirefox, mozilla-nss
openSUSE-SU-2017:1196-1
Security update for MozillaThunderbird
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-5407 Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8. | CVSS3: 6.5 | 1% Низкий | больше 7 лет назад |
 | CVE-2017-5407 Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8. | CVSS3: 6.1 | 1% Низкий | больше 8 лет назад |
 | CVE-2017-5407 Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8. | CVSS3: 6.5 | 1% Низкий | больше 7 лет назад |
| CVE-2017-5407 Using SVG filters that don't use the fixed point math implementation o ... | CVSS3: 6.5 | 1% Низкий | больше 7 лет назад |
| GHSA-92cf-2847-r49w Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8. | CVSS3: 6.5 | 1% Низкий | больше 3 лет назад |
| ELSA-2017-0498 ELSA-2017-0498: thunderbird security update (IMPORTANT) | больше 8 лет назад | ||
| ELSA-2017-0461 ELSA-2017-0461: firefox security update (CRITICAL) | больше 8 лет назад | ||
| ELSA-2017-0459 ELSA-2017-0459: firefox security update (CRITICAL) | больше 8 лет назад | ||
 | SUSE-SU-2017:0732-1 Security update for MozillaFirefox | больше 8 лет назад | ||
| SUSE-SU-2017:0714-1 Security update for MozillaFirefox | больше 8 лет назад | ||
| openSUSE-SU-2017:0690-1 Security update for MozillaFirefox, mozilla-nss | больше 8 лет назад | ||
| openSUSE-SU-2017:1196-1 Security update for MozillaThunderbird | больше 8 лет назад |
Уязвимостей на страницу