4.3
CVE-2013-5594
- EPSS 0.68%
- Veröffentlicht 18.02.2020 13:15:10
- Zuletzt bearbeitet 21.11.2024 01:57:45
- CVE-Watchlists
- Unerledigt
Mozilla Firefox before 25 allows modification of anonymous content of pluginProblem.xml binding
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.68% | 0.48 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 2.8 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
CWE-1021 Improper Restriction of Rendered UI Layers or Frames
The web application does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain.
https://bugzilla.mozilla.org/show_bug.cgi?id=914618
https://nki.gov.hu/en/figyelmeztetesek/serulekenysegek/mozilla-firefox-tobbszoros-serulekenysege-2/