CVE-2017-5382

Sažetak

Feed preview for RSS feeds can be used to capture errors and exceptions generated by privileged content, allowing for the exposure of internal information not meant to be seen by web content. This vulnerability affects Firefox < 51.

Reference

http://www.securityfocus.com/bid/95763
http://www.securitytracker.com/id/1037693
https://bugzilla.mozilla.org/show_bug.cgi?id=1295322
https://www.mozilla.org/security/advisories/mfsa2017-01/

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

07-08-2018 - 15:03

Objavljeno

11-06-2018 - 21:29