Home > Vulnerability Database > WS-2023-0384

Mend.io Vulnerability Database

WS-2023-0384

Date: October 26, 2023

In firefox running on X11, any script from any page can freely write to the primary selection, and that can be easily exploited to run arbitrary code on the user's machine.

Language: C++

Severity Score

7.2

Related Resources (2)

Url: https://github.com/turistu/odds-n-ends/blob/main/firefox/pastejack.md

Url: https://www.mend.io/vulnerability-database/WS-2023-0384

Severity Score

7.2

Weakness Type (CWE)

Improper Restriction of Rendered UI Layers or Frames

CWE-1021

CVSS v3.1

Base Score:	7.2
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

WS-2023-0384

Date: October 26, 2023

Language: C++

Severity Score

Related Resources (2)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?