CVE-2019-9808
CVSS v3.0
5.3 (Medium)
CVSS v2.0
5 (Medium)
EPSS
0.09 % (39th)
Affected Products
1
Advisories
5
If WebRTC permission is requested from documents with data: or blob: URLs, the permission notifications do not properly display the originating domain. The notification states "Unknown origin" as the requestee, leading to user confusion about which site is asking for this permission. This vulnerability affects Firefox < 66.
Weaknesses
- CWE-346
- Origin Validation Error
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2019-04-26 17:29:03
(5 years ago) - Updated Date
-
2019-04-29 19:13:55
(5 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...