CVE-2013-5614
CVSS v2.0
4.3 (Medium)
EPSS
0.23 % (61th)
Affected Products
16
Advisories
7
Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly consider the sandbox attribute of an IFRAME element during processing of a contained OBJECT element, which allows remote attackers to bypass intended sandbox restrictions via a crafted web site.
Weaknesses
- CWE-1021
- Improper Restriction of Rendered UI Layers or Frames
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2013-12-11 15:55:12
(10 years ago) - Updated Date
-
2020-08-21 18:41:50
(4 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Configuration #6
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...