10
CVE-2010-4508
- EPSS 1.3%
- Veröffentlicht 09.12.2010 20:00:17
- Zuletzt bearbeitet 16.06.2026 23:24:56
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 does not properly perform proxy upgrade negotiation, which has unspecified impact and remote attack vectors, related to an "inherent problem" with the WebSocket specification.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.3% | 0.667 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
http://osvdb.org/69758
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12251
https://wiki.mozilla.org/Platform/2010-12-07