Lookup for vulnerabilities affecting packages.
| Vulnerability_id | VCID-q8b7-av4e-v7a5 |
|---|
| Summary | If WebRTC permission is requested from documents with data: or blob: URLs, the permission notifications do not properly display the originating domain. The notification states "Unknown origin" as the requestee, leading to user confusion about which site is asking for this permission. |
|---|
| Aliases |
|
|---|
| Fixed_packages |
|
|---|
| Affected_packages |
| 0 |
| url |
pkg:alpm/archlinux/firefox@65.0.2-1 |
| purl |
pkg:alpm/archlinux/firefox@65.0.2-1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11xu-avv4-9ufx |
|
| 1 |
| vulnerability |
VCID-1sd4-yvfs-sqd9 |
|
| 2 |
| vulnerability |
VCID-32ee-dr7n-tufz |
|
| 3 |
| vulnerability |
VCID-4ycc-nrc4-5kah |
|
| 4 |
| vulnerability |
VCID-817n-mqrd-k3a5 |
|
| 5 |
| vulnerability |
VCID-a3c8-ayvt-eya5 |
|
| 6 |
| vulnerability |
VCID-bsqr-4yk1-bbau |
|
| 7 |
| vulnerability |
VCID-dyyp-8pfj-affk |
|
| 8 |
| vulnerability |
VCID-e542-rp8s-3ber |
|
| 9 |
| vulnerability |
VCID-he6e-re8n-kyax |
|
| 10 |
| vulnerability |
VCID-jmve-zgge-ykch |
|
| 11 |
| vulnerability |
VCID-q5cp-pxq4-kfgz |
|
| 12 |
| vulnerability |
VCID-q8b7-av4e-v7a5 |
|
| 13 |
| vulnerability |
VCID-ukws-zeq7-myez |
|
| 14 |
| vulnerability |
VCID-wqg4-ptah-6qg1 |
|
| 15 |
| vulnerability |
VCID-xntf-72n7-9qee |
|
| 16 |
| vulnerability |
VCID-yszh-ksz2-ekbr |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@65.0.2-1 |
|
|
|---|
| References |
|
|---|
| Weaknesses |
|
|---|
| Exploits |
|
|---|
| Severity_range_score | 9.0 - 10.0 |
|---|
| Exploitability | null |
|---|
| Weighted_severity | null |
|---|
| Risk_score | null |
|---|
| Resource_url | http://public2.vulnerablecode.io/vulnerabilities/VCID-q8b7-av4e-v7a5 |
|---|