NVD

Id
30129  
Name
CVE-2014-1501  
Description
Mozilla Firefox before 28.0 on Android allows remote attackers to bypass the Same Origin Policy and access arbitrary file: URLs via vectors involving the "Open Link in New Tab" menu selection.  
Reject
 
CVSS Version
2  
CVSS Score
5.8  
Severity
Medium  
CVSS Base Score
5.8  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:N)  
Pub Date
2017-01-19  
Published
2014-03-19  
Modified Date
2016-11-17  
Seq
2014-1501  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
158799 30129 CVE-2014-1501 SUSE-SU-2014:0418  View
158800 30129 CVE-2014-1501 http://www.mozilla.org/security/announce/2014/mfsa2014-21.html  View
158801 30129 CVE-2014-1501 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html  View
158802 30129 CVE-2014-1501 https://bugzilla.mozilla.org/show_bug.cgi?id=960135  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
12860 JVNDB-2014-001735 Android 上で稼働する Mozilla Firefox における同一生成元ポリシーを回避される脆弱性 Android 上で稼働する Mozilla Firefox には、同一生成元ポリシーを回避され、任意の file: URL にアクセスされる脆弱性が存在します。 CVE-2014-1501 68788 CVE-2014-1501 30129 5.8 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001735.html 2014-03-18 2014-03-20 View