VDB
BDU%3A2021-00023
BDU%3A2021-00023
PUBLISHED
CVSS 7.099999904632568 HIGH
Уязвимость интерфейса Resource Timing API браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Risk Scores
CVSS 2.0
7.099999904632568
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ООО «РусБИТех-Астра», Red Hat Inc., Canonical Ltd., АО «ИВК», Сообщество свободного программного обеспечения, Novell Inc., Mozilla Corp. | Astra Linux Special Edition (запись в едином реестре российских программ №369), Red Hat Enterprise Linux, Ubuntu, Альт Линукс СПТ (запись в едином реестре российских программ №9), Debian GNU/Linux, OpenSUSE Leap, Suse Linux Enterprise Desktop, SUSE Linux Enterprise Server for SAP Applications, SUSE Linux Enterprise Software Development Kit, Suse Linux Enterprise Server, SUSE Linux Enterprise High Performance Computing, SUSE Linux Enterprise Server for Raspberry Pi, Firefox, Firefox ESR, Thunderbird |
Timeline
- Jan 13, 2021 CVE Published
- Mar 19, 2026 Distribution Patch
- Mar 19, 2026 Distribution Patch
- Mar 19, 2026 Distribution Patch
- Mar 19, 2026 Distribution Patch
- Mar 19, 2026 Distribution Patch
- Mar 19, 2026 Security Advisory
- Mar 19, 2026 Security Advisory
- Mar 19, 2026 Security Advisory
- Mar 19, 2026 Security Advisory
- Mar 19, 2026 Security Advisory
References
- https://nvd.nist.gov/vuln/detail/CVE-2017-7830 url
- https://security-tracker.debian.org/tracker/CVE-2017-7830 url
- https://www.mozilla.org/security/advisories/mfsa2017-24/ url
- https://www.mozilla.org/security/advisories/mfsa2017-25/ url
- https://www.mozilla.org/security/advisories/mfsa2017-26/ url
- https://www.suse.com/security/cve/CVE-2017-7830/ url
- https://wiki.astralinux.ru/pages/viewpage.action?pageId=1212483 url
- https://wiki.astralinux.ru/astra-linux-se15-bulletin-20201201SE15 url
- https://cve.basealt.ru/ url
- https://lists.debian.org/debian-lts-announce/2017/11/msg00018.html url
- https://lists.debian.org/debian-lts-announce/2017/12/msg00001.html url
- https://www.debian.org/security/2017/dsa-4035 url
- https://www.debian.org/security/2017/dsa-4061 url
- https://www.debian.org/security/2017/dsa-4075 url
- https://ubuntu.com/security/notices/USN-3490-1?_ga=2.246782596.1874363206.1609607440-1543702552.1605094901 url
- https://ubuntu.com/security/notices/USN-3477-1?_ga=2.246782596.1874363206.1609607440-1543702552.1605094901 url
- https://access.redhat.com/security/cve/CVE-2017-7830 url