Lucene search

K

PRIOn knowledge basePRION:CVE-2017-7808

HistoryJun 11, 2018 - 9:29 p.m.

Path traversal

2018-06-1121:29:00

PRIOn knowledge base

www.prio-n.com

5

6.2 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

55.8%

A content security policy (CSP) “frame-ancestors” directive containing origins with paths allows for comparisons against those paths instead of the origin. This results in a cross-origin information leak of this path information. This vulnerability affects Firefox < 55.

CPENameOperatorVersion
firefoxlt55.0

References

www.securityfocus.com/bid/100373

www.securitytracker.com/id/1039124

bugzilla.mozilla.org/show_bug.cgi?id=1367531

www.mozilla.org/security/advisories/mfsa2017-18/

6.2 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

55.8%

Related for PRION:CVE-2017-7808

cvelist1 redhatcve1 ubuntucve1 debiancve1 cve1 nvd1 openvas6 ubuntu3 archlinux1 nessus6 freebsd1 mozilla1 kaspersky1