Vulnerabilities > Origin Validation Error

DATE CVE VULNERABILITY TITLE RISK
2019-09-11 CVE-2019-16237 Origin Validation Error vulnerability in multiple products
Dino before 2019-09-10 does not properly check the source of an MAM message in module/xep/0313_message_archive_management.vala.
network
low complexity
dino canonical fedoraproject debian CWE-346
7.5
2019-09-11 CVE-2019-16235 Origin Validation Error vulnerability in multiple products
Dino before 2019-09-10 does not properly check the source of a carbons message in module/xep/0280_message_carbons.vala.
network
low complexity
dino canonical fedoraproject debian CWE-346
7.5
2019-08-20 CVE-2019-5036 Origin Validation Error vulnerability in Google Nest CAM IQ Indoor Firmware 4620002
An exploitable denial-of-service vulnerability exists in the Weave error reporting functionality of the Nest Cam IQ Indoor, version 4620002.
network
low complexity
google CWE-346
7.5
2019-07-23 CVE-2019-9817 Origin Validation Error vulnerability in Mozilla Thunderbird
Images from a different domain can be read using a canvas object in some circumstances.
network
low complexity
mozilla CWE-346
5.3
2019-07-23 CVE-2019-11723 Origin Validation Error vulnerability in multiple products
A vulnerability exists during the installation of add-ons where the initial fetch ignored the origin attributes of the browsing context.
network
low complexity
mozilla opensuse CWE-346
7.5
2019-06-27 CVE-2019-5834 Origin Validation Error vulnerability in multiple products
Insufficient data validation in Blink in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
network
low complexity
google opensuse fedoraproject debian CWE-346
6.5
2019-06-07 CVE-2019-8282 Origin Validation Error vulnerability in Gemalto Sentinel LDK
Gemalto Admin Control Center, all versions prior to 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs.
network
high complexity
gemalto CWE-346
5.3
2019-05-08 CVE-2018-5409 Origin Validation Error vulnerability in Printerlogic Print Management 18.3.1.96
The PrinterLogic Print Management software, versions up to and including 18.3.1.96, updates and executes the code without sufficiently verifying the origin and integrity of the code.
network
low complexity
printerlogic CWE-346
critical
9.8
2019-04-26 CVE-2019-9808 Origin Validation Error vulnerability in Mozilla Firefox
If WebRTC permission is requested from documents with data: or blob: URLs, the permission notifications do not properly display the originating domain.
network
low complexity
mozilla CWE-346
5.3
2019-04-26 CVE-2019-9803 Origin Validation Error vulnerability in Mozilla Firefox
The Upgrade-Insecure-Requests (UIR) specification states that if UIR is enabled through Content Security Policy (CSP), navigation to a same-origin URL must be upgraded to HTTPS.
network
high complexity
mozilla CWE-346
7.4