7.5
CVE-2026-8964
- EPSS 0.3%
- Veröffentlicht 19.05.2026 12:30:08
- Zuletzt bearbeitet 20.05.2026 14:57:04
- Quelle security@mozilla.org
- CVE-Watchlists
- Unerledigt
Spoofing issue in the Popup Blocker component
Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mozilla ≫ Thunderbird SwEdition- Version < 151.0.0
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.3% | 0.216 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
|
CWE-451 User Interface (UI) Misrepresentation of Critical Information
The user interface (UI) does not properly represent critical information to the user, allowing the information - or its source - to be obscured or spoofed. This is often a component in phishing attacks.
https://www.mozilla.org/security/advisories/mfsa2026-46/
https://bugzilla.mozilla.org/show_bug.cgi?id=2025170
https://www.mozilla.org/security/advisories/mfsa2026-50/