← volver
CVE-2018-18495

CVE-2018-18495

EPSS 1.7%
WebExtension content scripts can be loaded into about: pages in some circumstances, in violation of the permissions granted to extensions. This could allow an extension to interfere with the loading and usage of these pages and use capabilities that were intended to be restricted from extensions. This vulnerability affects Firefox < 64.
Productos afectados
Mozilla · Firefox

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://bugzilla.mozilla.org/show_bug.cgi?id=1427585https://usn.ubuntu.com/3844-1/https://www.mozilla.org/security/advisories/mfsa2018-29/http://www.securityfocus.com/bid/106167