China National Vulnerability DatabaseCNVD-2023-59031

HistoryJan 04, 2023 - 12:00 a.m.

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2023-59031)

Vulners
Cnvd
Mozilla Firefox Information Disclosure Vulnerability (CNVD-2023-59031)

2023-01-0400:00:00

China National Vulnerability Database

www.cnvd.org.cn

mozilla

firefox

web browser

mozilla foundation

united states

information disclosure

vulnerability

sensitive feature

error message

cross-origin response

web workers

remote attacker

sensitive information

0.001 Low

EPSS

Percentile

50.9%

JSON

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. An information disclosure vulnerability exists in Mozilla Firefox that originates from a sensitive feature in the display error message in a cross-origin response when the product imports resources using Web Workers. A remote attacker could exploit the vulnerability to obtain sensitive information.

CPENameOperatorVersion
mozilla firefoxlt97.0
mozilla firefox esrlt91.6
mozilla thunderbirdlt91.6

Name	Operator	Version
mozilla firefox	lt	97.0
mozilla firefox esr	lt	91.6
mozilla thunderbird	lt	91.6

redhatcve 1

cve 1

nvd 1

alpinelinux 1

ubuntucve 1

veracode 1

cvelist 1

prion 1

debiancve 1

redos 1

osv 10

almalinux 2

nessus 46

mageia 2

openvas 23

debian 4

redhat 10

centos 2

rocky 2

oraclelinux 4

altlinux 2

mozilla 3

kaspersky 3

suse 3

slackware 1

ubuntu 2

amazon 2

ibm 2

gentoo 2

redhatcve

CVE-2022-22760

2022-02-10 19:48:07

cve

CVE-2022-22760

2022-12-22 20:15:19

nvd

CVE-2022-22760

2022-12-22 20:15:19

alpinelinux

CVE-2022-22760

2022-12-22 20:15:19

ubuntucve

CVE-2022-22760

2022-02-09 00:00:00

veracode

Information Disclosure

2022-02-09 07:06:41

cvelist

CVE-2022-22760

2022-12-22 00:00:00

prion

Cross site scripting

2022-12-22 20:15:00

debiancve

CVE-2022-22760

2022-12-22 20:15:19

redos

ROS-20220210-01

2022-02-10 00:00:00

osv

Important: thunderbird security update

2022-02-15 10:03:34

thunderbird - security update

2022-02-13 00:00:00

firefox-esr - security update

2022-02-09 00:00:00

almalinux

Important: firefox security update

2022-02-14 08:13:38

Important: thunderbird security update

2022-02-15 10:03:34

nessus

CentOS 8 : thunderbird (CESA-2022:0535)

2022-02-16 00:00:00

Rocky Linux 8 : firefox (RLSA-2022:0510)

2023-11-06 00:00:00

Scientific Linux Security Update : thunderbird on SL7.x x86_64 (2022:0538)

2022-02-15 00:00:00

mageia

Updated firefox packages fix security vulnerability

2022-02-12 20:31:35

Updated thunderbird packages fix security vulnerabilities

2022-02-12 20:31:35

openvas

Debian: Security Advisory (DSA-5074-1)

2022-02-15 00:00:00

Mageia: Security Advisory (MGASA-2022-0057)

2022-02-13 00:00:00

CentOS: Security Advisory for firefox (CESA-2022:0514)

2022-02-16 00:00:00

debian

[SECURITY] [DSA 5074-1] thunderbird security update

2022-02-13 16:26:01

[SECURITY] [DLA 2916-1] firefox-esr security update

2022-02-09 19:26:32

[SECURITY] [DSA 5069-1] firefox-esr security update

2022-02-09 18:28:30

redhat

(RHSA-2022:0510) Important: firefox security update

2022-02-14 08:13:38

(RHSA-2022:0536) Important: thunderbird security update

2022-02-15 10:03:36

(RHSA-2022:0514) Important: firefox security update

2022-02-14 08:14:45

centos

firefox security update

2022-02-15 22:56:11

thunderbird security update

2022-02-15 22:57:09

rocky

thunderbird security update

2022-02-15 10:03:34

firefox security update

2022-02-14 08:13:38

oraclelinux

firefox security update

2022-02-14 00:00:00

firefox security update

2022-02-16 00:00:00

thunderbird security update

2022-02-16 00:00:00

altlinux

Security fix for the ALT Linux 10 package firefox-esr version 91.6.0-alt1

2022-02-16 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 91.6.0-alt1

2022-02-17 00:00:00

mozilla

Security Vulnerabilities fixed in Thunderbird 91.6 — Mozilla

2022-02-08 00:00:00

Security Vulnerabilities fixed in Firefox ESR 91.6 — Mozilla

2022-02-08 00:00:00

Security Vulnerabilities fixed in Firefox 97 — Mozilla

2022-02-08 00:00:00

kaspersky

KLA12449 Multiple vulnerabilities in Mozilla Firefox ESR

2022-02-08 00:00:00

KLA12460 Multiple vulnerabilities in Mozilla Thunderbird

2022-02-08 00:00:00

KLA12448 Multiple vulnerabilities in Mozilla Firefox

2022-02-08 00:00:00

suse

Security update for MozillaFirefox (important)

2022-03-04 00:00:00

Security update for MozillaThunderbird (important)

2022-02-23 00:00:00

Security update for MozillaFirefox (moderate)

2022-03-03 00:00:00

slackware

[slackware-security] mozilla-firefox

2022-02-10 02:06:53

ubuntu

Firefox vulnerabilities

2022-02-14 00:00:00

Thunderbird vulnerabilities

2022-03-23 00:00:00

amazon

Important: thunderbird

2022-03-07 23:34:00

Important: thunderbird

2022-07-06 03:17:00

ibm

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 91.8.0ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF16 - 2022.4.0

2022-04-29 04:43:11

Security Bulletin: Multiple vulnerabilities in Mozilla Firefox affect IBM Cloud Pak for Multicloud Management Monitoring.

2023-01-31 14:47:39

gentoo

Mozilla Firefox: Multiple vulnerabilities

2022-02-21 00:00:00

Mozilla Thunderbird: Multiple Vulnerabilities

2022-08-10 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.001 Low

EPSS

Percentile

50.9%

JSON

Related for CNVD-2023-59031