Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Firefox Health Reports (aka FHR or about:healthreport) feature in Mozilla Firefox before 46.0 does not properly restrict the origin of events, which makes it easier for remote attackers to modify sharing preferences by leveraging access to the remote-report IFRAME element.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox 安全漏洞
Vulnerability Description
Mozilla Firefox Health Report(健康报告)是美国Mozilla基金会开发的一款用于了解Firefox浏览器性能的插件,它通过收集用户的一些使用数据,进而提供Firefox浏览器的稳定性及性能的变化情况,以及优化提示。 Mozilla Firefox 46之前版本的Firefox Health Report功能中存在安全漏洞,该漏洞源于程序没有正确限制事件源。远程攻击者可通过访问remote-report IFRAME元素利用该漏洞修改共享引用。
CVSS Information
N/A
Vulnerability Type
N/A