厂商或团体 mozilla 的搜索结果 (1712)

CVE-2018-7753(发布:2018-03-07 18:29:00)NM
CVSS7.5

[原文]An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized.

CVE-2007-5341(发布:2017-08-18 16:29:00)NM
CVSS7.5

[原文]Remote code execution in the Venkman script debugger in Mozilla Firefox before 2.0.0.8.

CVE-2017-7502(发布:2017-05-30 14:29:00)NMPS
CVSS5.0

[原文]Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.

CVE-2017-5461(发布:2017-05-10 21:29:05)NMPS
CVSS7.5

[原文]Mozilla Network Security Services (NSS) before 3.21.4, 3.22.x through 3.28.x before 3.28.4, 3.29.x before 3.29.5, and 3.30.x before 3.30.1 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact by leveraging incorrect base64 operations.

CVE-2016-2803(发布:2017-04-12 18:59:00)NMP
CVSS4.3

[原文]Cross-site scripting (XSS) vulnerability in the dependency graphs in Bugzilla 2.16rc1 through 4.4.11, and 4.5.1 through 5.0.2 allows remote attackers to inject arbitrary web script or HTML.

CVE-2016-5283(发布:2016-09-22 18:59:18)NMP
CVSS6.8

[原文]Mozilla Firefox before 49.0 allows remote attackers to bypass the Same Origin Policy via a crafted fragment identifier in the SRC attribute of an IFRAME element, leading to insufficient restrictions on link-color information after a document is resized.

12345678下一页尾页 第1页 / 共286页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站