CVE-2019-11725

CVSS v3.1 6.5 (Medium)

CVSS v2.0 4 (Medium)

EPSS 0.19 % (56^th)

Affected Products 2

Advisories 13

When a user navigates to site marked as unsafe by the Safebrowsing API, warning messages are displayed and navigation is interrupted but resources from the same site loaded through websockets are not blocked, leading to the loading of unsafe resources and bypassing safebrowsing protections. This vulnerability affects Firefox < 68.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2019-07-23 14:15:16
(5 years ago)
Updated Date: 2023-01-31 14:14:15
(19 months ago)

Affected Products

Mozilla

Firefox

Opensuse

Leap

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 68.0 version	cpe:2.3:a:mozilla:firefox		< 68.0

Configuration #2

		CPE23	From	Up To
	Opensuse Leap 15.0	cpe:2.3:o:opensuse:leap:15.0
	Opensuse Leap 15.1	cpe:2.3:o:opensuse:leap:15.1