Vulnerabilities > Origin Validation Error

DATE CVE VULNERABILITY TITLE RISK
2020-01-14 CVE-2020-0647 Origin Validation Error vulnerability in Microsoft Office Online Server
A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications correctly, aka 'Microsoft Office Online Spoofing Vulnerability'.
network
low complexity
microsoft CWE-346
5.4
2020-01-08 CVE-2019-11762 Origin Validation Error vulnerability in multiple products
If two same-origin documents set document.domain differently to become cross-origin, it was possible for them to call arbitrary DOM methods/getters/setters on the now-cross-origin window.
network
low complexity
mozilla canonical CWE-346
6.1
2020-01-03 CVE-2019-20329 Origin Validation Error vulnerability in Openlambda Project Openlambda 20190910
OpenLambda 2019-09-10 allows DNS rebinding attacks against the OL server for the REST API on TCP port 5000.
network
low complexity
openlambda-project CWE-346
8.1
2019-12-12 CVE-2019-5062 Origin Validation Error vulnerability in W1.Fi Hostapd 2.6
An exploitable denial-of-service vulnerability exists in the 802.11w security state handling for hostapd 2.6 connected clients with valid 802.11w sessions.
low complexity
w1-fi CWE-346
6.5
2019-12-10 CVE-2019-13740 Origin Validation Error vulnerability in multiple products
Incorrect security UI in sharing in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
network
low complexity
google debian fedoraproject redhat CWE-346
6.5
2019-12-05 CVE-2019-19545 Origin Validation Error vulnerability in Norton Password Manager
Norton Password Manager, prior to 6.6.2.5, may be susceptible to a cross origin resource sharing (CORS) vulnerability, which is a type of issue that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served.
network
low complexity
norton CWE-346
6.3
2019-12-05 CVE-2019-18381 Origin Validation Error vulnerability in Norton Password Manager
Norton Password Manager, prior to 6.6.2.5, may be susceptible to a cross origin resource sharing (CORS) vulnerability, which is a type of issue that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served.
network
low complexity
norton CWE-346
6.3
2019-12-02 CVE-2019-19019 Origin Validation Error vulnerability in Titanhq Webtitan
An issue was discovered in TitanHQ WebTitan before 5.18.
network
high complexity
titanhq CWE-346
7.5
2019-11-29 CVE-2019-5227 Origin Validation Error vulnerability in Huawei products
P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9.1.0.135(C00E133R2P1) and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade vulnerability.
local
low complexity
huawei CWE-346
5.5
2019-11-29 CVE-2019-5226 Origin Validation Error vulnerability in Huawei products
P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9.1.0.135(C00E133R2P1) and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade vulnerability.
local
low complexity
huawei CWE-346
5.5