Vulnerability in Mozilla Firefox_os

CVE-2015-5961

The COPPA error page in the Accounts setup dialog in Mozilla Firefox OS before 2.2 embeds content from an external web server URL into the System process, which allows man-in-the-middle attackers to bypass intended access restrictions by s…

EPSS: 0.001 (25.1th percentile) — read the EPSS interpretation.

Affected products

Mozilla Firefox_os
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
76255 (vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_CONFIRM)