CVE-2017-5382

high

Description

Feed preview for RSS feeds can be used to capture errors and exceptions generated by privileged content, allowing for the exposure of internal information not meant to be seen by web content. This vulnerability affects Firefox < 51.

References

Advisories
More

http://www.securitytracker.com/id/1037693

http://www.securityfocus.com/bid/95763

https://www.mozilla.org/security/advisories/mfsa2017-01/

https://bugzilla.mozilla.org/show_bug.cgi?id=1295322

Details

Source: Mitre, NVD

Published: 2018-06-11

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.0148

Detections

Analytics