CVE-2014-1591

MEDIUM Year: 2014
CVSS v2 Score
4.3
Medium
Weakness Type
CWE-199
View all →

Vulnerability Description

Mozilla Firefox 33.0 and SeaMonkey before 2.31 include path strings in CSP violation reports, which allows remote attackers to obtain sensitive information via a web site that receives a report after a redirect.

Related Vulnerabilities

CVE-2016-5405

CRITICAL
CVSS:9.8(Critical)

389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstati...

CWE-1992016

CVE-2025-46588

HIGH
CVSS:7.7(High)

Vulnerability of unauthorized access in the app lock module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CWE-1992025

CVE-2025-46589

HIGH
CVSS:7.1(High)

Vulnerability of unauthorized access in the app lock module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CWE-1992025

CVE-2016-5486

MEDIUM
CVSS:5.5(Medium)

Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun Systems Products Suite AK 2013 allows local users to affect confidentiality via vectors related to Core Serv...

CWE-1992016

CVE-2024-51522

MEDIUM
CVSS:5.5(Medium)

Vulnerability of improper device information processing in the device management module Impact: Successful exploitation of this vulnerability may affect availability.

CWE-1992024

CVE-2015-8346

MEDIUM
CVSS:5.3(Medium)

app/views/timelog/_form.html.erb in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote attackers to obtain sensitive information about subjects of issues by viewing the tim...

CWE-1992015