4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.02 Low
EPSS
Percentile
88.8%
Security researcher Paul Stone of Context Information Security discovered that timing differences in the processing of SVG format images with filters could allow for pixel values to be read. This could potentially allow for text values to be read across domains, leading to information disclosure.
CPE | Name | Operator | Version |
---|---|---|---|
firefox | lt | 22 | |
firefox esr | lt | 17.0.7 | |
seamonkey | lt | 2.19 | |
thunderbird | lt | 17.0.7 | |
thunderbird esr | lt | 17.0.7 |