0.002 Low
EPSS
Percentile
58.7%
The HTTP Alternative Services header, Alt-Svc, can be used by a malicious site to scan all TCP ports of any host that the accessible to a user when web content is loaded. This vulnerability affects Firefox < 68.
bugzilla.redhat.com/show_bug.cgi?id=1730989
nvd.nist.gov/vuln/detail/CVE-2019-11728
www.cve.org/CVERecord?id=CVE-2019-11728
www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11728