Vulnerabilities Severity Details
Severity: Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2010-1663 Google Chrome before 4.1.249.1064 Cross-Origin Bypass
Severity: High/Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2010-2751 Mozilla Firefox before 3.5.11/3.6.7 Location Bar Spoofing (SSL Spoofing)
Severity: Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2010-4036 Google Chrome before 7.0.517.43 Location Bar Spoofing (URL & SSL Spoofing)
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2010-4045 Opera Web Browser before 10.63 Universal Cross-Site Scripting and Remote Code Execution
Severity: Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-0061 Mozilla Firefox before 3.6.14 Buffer Overflow
Severity: Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-0682 Opera Web Browser before 11.01 opera.dll Buffer Overflow
Severity: Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-1107 Google Chrome before 9.0.597.107 Location Bar Spoofing (URL & SSL Spoofing)
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-1452 Google Chrome before 11.0.696.57 Location Bar Spoofing (URL & SSL Spoofing)
Severity: Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-2377 Mozilla Firefox before 3.6.18/5.0.0 Memory Corruption
Severity: Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-2848 Google Chrome before 14.0.835.163 Location Bar Spoofing (URL & SSL Spoofing)
Severity: Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-2845 Google Chrome before 15.0.874.102 Location Bar Spoofing (URL & SSL Spoofing)
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2011-3875 Google Chrome before 15.0.874.102 Location Bar Spoofing using Drag and Drop (URL Spoofing)
Severity: Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-0474 Mozilla Firefox before 12.0 Universal Cross-Site Scripting & Location Bar Spoofing (URL & SSL Spoofing)
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-1928 Opera Web Browser before 11.62 PopUp window address field Spoofing
Severity: Low/Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-1924 Opera Web Browser before 11.62 Small windows used for executing downloads (leading to Malware Execution)
Severity: High/Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-1925 Opera Web Browser before 11.62 ClickJacking attack can execute downloads (leading to Malware Execution)
Severity: High/Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-3558 Opera Web Browser before 11.65 PopUp window address field Spoofing
Severity: Low
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-3555 Opera Web Browser before 11.65 Keyboard Sequence leading to Cross-Site Scripting and Code Execution
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-3556 Opera Web Browser before 11.65 Social Engineering leading to Cross-Site Scripting and Code Execution
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-3984 Mozilla Firefox before 16.0 XPI Addon or Java Applet ClickJacking leading to Remote Code Execution
Severity: Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-4143 Opera Web Browser before 12.01/11.66 Small windows used for executing downloads (leading to Malware Execution)
Severity: High/Critical
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-4142 Opera Web Browser before 12.01/11.66 HTML Sanitization Bypass (HTML Character Cross-Site Scripting)
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2012-6460 Opera Web Browser before 12.02/11.67 Truncated dialogs may be used to trick users
Severity: Low/Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2013-5593 Mozilla Firefox before 25.0 Location Bar Spoofing (URL & SSL Spoofing) and Possible Clickjacking Attack
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2014-1480 Mozilla Firefox before 27.0 Downloaded File Open File Dialog Clickjacking (Software Execution)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2014-1539 Mozilla Firefox before 30.0 on Mac OS X Cursor-ClickJacking (CursorJacking)
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2014-1870 Opera Web Browser before 19.0 Location Bar Spoofing (URL Spoofing)
Severity: Low/Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2015-0810 Mozilla Firefox before 37.0 on Mac OS X Cursor-ClickJacking (CursorJacking)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2015-4476 Mozilla Firefox For Android before 41.0 Location Bar Spoofing (URL & SSL Spoofing)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2015-7185 Mozilla Firefox For Android before 42.0 Location Bar Spoofing (URL & SSL Spoofing)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2015-7186 Mozilla Firefox For Android before 42.0 file:/// URIs SOP Bypass
Severity: Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2016-1941 Mozilla Firefox before 44.0 on Mac OS X File Download Dialog ClickJacking (Software Execution)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2016-1943 Mozilla Firefox For Android before 44.0 Addressbar Spoofing (URL & SSL Spoofing)
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2016-1942 Mozilla Firefox before 44.0 Location Bar Spoofing (URL Spoofing)
Severity: Low
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2016-1967 Mozilla Firefox before 45.0 Same-Origin Policy Violation
Severity: High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2016-2822 Mozilla Firefox before 47.0 Location Bar Spoofing (URL & SSL Spoofing) and Possible Clickjacking attack
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2016-5298 Mozilla Firefox for Android before 50.0 Location Bar Spoofing (SSL Spoofing)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2017-5395 Mozilla Firefox for Android before 51.0 Addressbar Spoofing (URL & SSL Spoofing)
Severity: Low/Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2017-5394 Mozilla Firefox for Android before 51.0 Location Bar Spoofing (URL & SSL Spoofing)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2017-5041 Google Chrome before 57.0.2987.98 Location Bar Spoofing in Omnibox (URL & SSL Spoofing)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2017-5452 Mozilla Firefox for Android before 53.0 Addressbar Spoofing (URL & SSL Spoofing)
Severity: Low/Moderate
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |
CVE-2017-5451 Mozilla Firefox before 53.0 Location Bar Spoofing (URL & SSL Spoofing)
Severity: Moderate/High
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
Local | High | Multiple | None | None | None |
Adjacent | Medium | Single | Partial | Partial | Partial |
Network | Low | None | Complete | Complete | Complete |