Lookup for vulnerabilities affecting packages.
| Vulnerability_id | VCID-qdtc-vxt9-2fbt |
|---|
| Summary | Mixed content blocking of insecure (HTTP) sub-resources in a secure (HTTPS) document was not correctly applied for resources that redirect from HTTPS to HTTP, allowing content that should be blocked, such as scripts, to be loaded on a page. |
|---|
| Aliases |
|
|---|
| Fixed_packages |
|
|---|
| Affected_packages |
| 0 |
| url |
pkg:alpm/archlinux/firefox@56.0.2-1 |
| purl |
pkg:alpm/archlinux/firefox@56.0.2-1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2pwv-h1am-hqbb |
|
| 1 |
| vulnerability |
VCID-3me6-q3c4-9uew |
|
| 2 |
| vulnerability |
VCID-4gwb-c8x5-tqbm |
|
| 3 |
| vulnerability |
VCID-53ts-p1ub-jufh |
|
| 4 |
| vulnerability |
VCID-5b1g-3rp1-k3fc |
|
| 5 |
| vulnerability |
VCID-61um-r6m7-cygn |
|
| 6 |
| vulnerability |
VCID-6u66-r4t3-2qar |
|
| 7 |
| vulnerability |
VCID-f9a9-wb1k-cygm |
|
| 8 |
| vulnerability |
VCID-fhwg-mggf-p3fx |
|
| 9 |
| vulnerability |
VCID-q9jc-5pc9-f3fq |
|
| 10 |
| vulnerability |
VCID-qdtc-vxt9-2fbt |
|
| 11 |
| vulnerability |
VCID-rtwc-5h7s-guge |
|
| 12 |
| vulnerability |
VCID-rz2t-u58z-eqh7 |
|
| 13 |
| vulnerability |
VCID-t82h-zf9g-muep |
|
| 14 |
| vulnerability |
VCID-wty8-5znd-77hh |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@56.0.2-1 |
|
|
|---|
| References |
|
|---|
| Weaknesses |
|
|---|
| Exploits |
|
|---|
| Severity_range_score | 9.0 - 10.0 |
|---|
| Exploitability | null |
|---|
| Weighted_severity | null |
|---|
| Risk_score | null |
|---|
| Resource_url | http://public2.vulnerablecode.io/vulnerabilities/VCID-qdtc-vxt9-2fbt |
|---|