mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 17:21:36 +00:00
52 lines
1.7 KiB
JSON
52 lines
1.7 KiB
JSON
{
|
|
"id": "CVE-2024-53975",
|
|
"sourceIdentifier": "security@mozilla.org",
|
|
"published": "2024-11-26T14:15:21.497",
|
|
"lastModified": "2024-11-27T15:15:26.923",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Accessing a non-secure HTTP site that uses a non-existent port may cause the SSL padlock icon in the location URL bar to, misleadingly, appear secure. This vulnerability affects Firefox for iOS < 133."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Acceder a un sitio HTTP no seguro que utiliza un puerto inexistente puede provocar que el icono del candado SSL en la barra de URL de ubicaci\u00f3n parezca seguro, de manera enga\u00f1osa. Esta vulnerabilidad afecta a Firefox para iOS < 133."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV31": [
|
|
{
|
|
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
|
|
"type": "Secondary",
|
|
"cvssData": {
|
|
"version": "3.1",
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
|
|
"baseScore": 5.4,
|
|
"baseSeverity": "MEDIUM",
|
|
"attackVector": "NETWORK",
|
|
"attackComplexity": "LOW",
|
|
"privilegesRequired": "LOW",
|
|
"userInteraction": "NONE",
|
|
"scope": "UNCHANGED",
|
|
"confidentialityImpact": "NONE",
|
|
"integrityImpact": "LOW",
|
|
"availabilityImpact": "LOW"
|
|
},
|
|
"exploitabilityScore": 2.8,
|
|
"impactScore": 2.5
|
|
}
|
|
]
|
|
},
|
|
"references": [
|
|
{
|
|
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1843467",
|
|
"source": "security@mozilla.org"
|
|
},
|
|
{
|
|
"url": "https://www.mozilla.org/security/advisories/mfsa2024-66/",
|
|
"source": "security@mozilla.org"
|
|
}
|
|
]
|
|
} |