10

CVE-2013-1710

The crypto.generateCRMFRequest function in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 allows remote attackers to execute arbitrary JavaScript code or conduct cross-site scripting (XSS) attacks via vectors related to Certificate Request Message Format (CRMF) request generation.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaSeamonkey Updatebeta3 Version <= 2.20
MozillaSeamonkey Version2.0
MozillaSeamonkey Version2.0 Updatealpha_1
MozillaSeamonkey Version2.0 Updatealpha_2
MozillaSeamonkey Version2.0 Updatealpha_3
MozillaSeamonkey Version2.0 Updatebeta_1
MozillaSeamonkey Version2.0 Updatebeta_2
MozillaSeamonkey Version2.0 Updaterc1
MozillaSeamonkey Version2.0 Updaterc2
MozillaSeamonkey Version2.0.1
MozillaSeamonkey Version2.0.2
MozillaSeamonkey Version2.0.3
MozillaSeamonkey Version2.0.4
MozillaSeamonkey Version2.0.5
MozillaSeamonkey Version2.0.6
MozillaSeamonkey Version2.0.7
MozillaSeamonkey Version2.0.8
MozillaSeamonkey Version2.0.9
MozillaSeamonkey Version2.0.10
MozillaSeamonkey Version2.0.11
MozillaSeamonkey Version2.0.12
MozillaSeamonkey Version2.0.13
MozillaSeamonkey Version2.0.14
MozillaSeamonkey Version2.1
MozillaSeamonkey Version2.1 Updatealpha1
MozillaSeamonkey Version2.1 Updatealpha2
MozillaSeamonkey Version2.1 Updatealpha3
MozillaSeamonkey Version2.1 Updatebeta1
MozillaSeamonkey Version2.1 Updatebeta2
MozillaSeamonkey Version2.1 Updatebeta3
MozillaSeamonkey Version2.1 Updaterc1
MozillaSeamonkey Version2.1 Updaterc2
MozillaSeamonkey Version2.2
MozillaSeamonkey Version2.2 Updatebeta1
MozillaSeamonkey Version2.2 Updatebeta2
MozillaSeamonkey Version2.2 Updatebeta3
MozillaSeamonkey Version2.3
MozillaSeamonkey Version2.3 Updatebeta1
MozillaSeamonkey Version2.3 Updatebeta2
MozillaSeamonkey Version2.3 Updatebeta3
MozillaSeamonkey Version2.3.1
MozillaSeamonkey Version2.3.2
MozillaSeamonkey Version2.3.3
MozillaSeamonkey Version2.4
MozillaSeamonkey Version2.4 Updatebeta1
MozillaSeamonkey Version2.4 Updatebeta2
MozillaSeamonkey Version2.4 Updatebeta3
MozillaSeamonkey Version2.4.1
MozillaSeamonkey Version2.5
MozillaSeamonkey Version2.5 Updatebeta1
MozillaSeamonkey Version2.5 Updatebeta2
MozillaSeamonkey Version2.5 Updatebeta3
MozillaSeamonkey Version2.5 Updatebeta4
MozillaSeamonkey Version2.6
MozillaSeamonkey Version2.6 Updatebeta1
MozillaSeamonkey Version2.6 Updatebeta2
MozillaSeamonkey Version2.6 Updatebeta3
MozillaSeamonkey Version2.6 Updatebeta4
MozillaSeamonkey Version2.6.1
MozillaSeamonkey Version2.7
MozillaSeamonkey Version2.7 Updatebeta1
MozillaSeamonkey Version2.7 Updatebeta2
MozillaSeamonkey Version2.7 Updatebeta3
MozillaSeamonkey Version2.7 Updatebeta4
MozillaSeamonkey Version2.7 Updatebeta5
MozillaSeamonkey Version2.7.1
MozillaSeamonkey Version2.7.2
MozillaSeamonkey Version2.8
MozillaSeamonkey Version2.8 Updatebeta1
MozillaSeamonkey Version2.8 Updatebeta2
MozillaSeamonkey Version2.8 Updatebeta3
MozillaSeamonkey Version2.8 Updatebeta4
MozillaSeamonkey Version2.8 Updatebeta5
MozillaSeamonkey Version2.8 Updatebeta6
MozillaSeamonkey Version2.9
MozillaSeamonkey Version2.9 Updatebeta1
MozillaSeamonkey Version2.9 Updatebeta2
MozillaSeamonkey Version2.9 Updatebeta3
MozillaSeamonkey Version2.9 Updatebeta4
MozillaSeamonkey Version2.9.1
MozillaSeamonkey Version2.10
MozillaSeamonkey Version2.10 Updatebeta1
MozillaSeamonkey Version2.10 Updatebeta2
MozillaSeamonkey Version2.10 Updatebeta3
MozillaSeamonkey Version2.10.1
MozillaSeamonkey Version2.11
MozillaSeamonkey Version2.11 Updatebeta1
MozillaSeamonkey Version2.11 Updatebeta2
MozillaSeamonkey Version2.11 Updatebeta3
MozillaSeamonkey Version2.11 Updatebeta4
MozillaSeamonkey Version2.11 Updatebeta5
MozillaSeamonkey Version2.11 Updatebeta6
MozillaSeamonkey Version2.12
MozillaSeamonkey Version2.12 Updatebeta1
MozillaSeamonkey Version2.12 Updatebeta2
MozillaSeamonkey Version2.12 Updatebeta3
MozillaSeamonkey Version2.12 Updatebeta4
MozillaSeamonkey Version2.12 Updatebeta5
MozillaSeamonkey Version2.12 Updatebeta6
MozillaSeamonkey Version2.12.1
MozillaSeamonkey Version2.13
MozillaSeamonkey Version2.13 Updatebeta1
MozillaSeamonkey Version2.13 Updatebeta2
MozillaSeamonkey Version2.13 Updatebeta3
MozillaSeamonkey Version2.13 Updatebeta4
MozillaSeamonkey Version2.13 Updatebeta5
MozillaSeamonkey Version2.13 Updatebeta6
MozillaSeamonkey Version2.13.1
MozillaSeamonkey Version2.13.2
MozillaSeamonkey Version2.14
MozillaSeamonkey Version2.14 Updatebeta1
MozillaSeamonkey Version2.14 Updatebeta2
MozillaSeamonkey Version2.14 Updatebeta3
MozillaSeamonkey Version2.14 Updatebeta4
MozillaSeamonkey Version2.14 Updatebeta5
MozillaSeamonkey Version2.15
MozillaSeamonkey Version2.15 Updatebeta1
MozillaSeamonkey Version2.15 Updatebeta2
MozillaSeamonkey Version2.15 Updatebeta3
MozillaSeamonkey Version2.15 Updatebeta4
MozillaSeamonkey Version2.15 Updatebeta5
MozillaSeamonkey Version2.15 Updatebeta6
MozillaSeamonkey Version2.15.1
MozillaSeamonkey Version2.15.2
MozillaSeamonkey Version2.16
MozillaSeamonkey Version2.16 Updatebeta1
MozillaSeamonkey Version2.16 Updatebeta2
MozillaSeamonkey Version2.16 Updatebeta3
MozillaSeamonkey Version2.16 Updatebeta4
MozillaSeamonkey Version2.16 Updatebeta5
MozillaSeamonkey Version2.16.1
MozillaSeamonkey Version2.16.2
MozillaSeamonkey Version2.17
MozillaSeamonkey Version2.17 Updatebeta1
MozillaSeamonkey Version2.17 Updatebeta2
MozillaSeamonkey Version2.17 Updatebeta3
MozillaSeamonkey Version2.17 Updatebeta4
MozillaSeamonkey Version2.17.1
MozillaSeamonkey Version2.18 Updatebeta1
MozillaSeamonkey Version2.18 Updatebeta2
MozillaSeamonkey Version2.18 Updatebeta3
MozillaSeamonkey Version2.18 Updatebeta4
MozillaSeamonkey Version2.19
MozillaSeamonkey Version2.19 Updatebeta1
MozillaSeamonkey Version2.19 Updatebeta2
MozillaSeamonkey Version2.20 Updatebeta1
MozillaSeamonkey Version2.20 Updatebeta2
MozillaThunderbird Esr Version17.0
MozillaThunderbird Esr Version17.0.1
MozillaThunderbird Esr Version17.0.2
MozillaThunderbird Esr Version17.0.3
MozillaThunderbird Esr Version17.0.4
MozillaThunderbird Esr Version17.0.5
MozillaThunderbird Esr Version17.0.6
MozillaThunderbird Esr Version17.0.7
MozillaFirefox Version <= 22.0
MozillaFirefox Version19.0
MozillaFirefox Version19.0.1
MozillaFirefox Version19.0.2
MozillaFirefox Version20.0
MozillaFirefox Version20.0.1
MozillaFirefox Version21.0
MozillaThunderbird Version <= 17.0.7
MozillaThunderbird Version17.0
MozillaThunderbird Version17.0.1
MozillaThunderbird Version17.0.2
MozillaThunderbird Version17.0.3
MozillaThunderbird Version17.0.4
MozillaThunderbird Version17.0.5
MozillaThunderbird Version17.0.6
MozillaFirefox Version17.0
MozillaFirefox Version17.0.1
MozillaFirefox Version17.0.2
MozillaFirefox Version17.0.3
MozillaFirefox Version17.0.4
MozillaFirefox Version17.0.5
MozillaFirefox Version17.0.6
MozillaFirefox Version17.0.7
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 79.22% 0.99
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.