Vulnerabilities > Origin Validation Error
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-18 | CVE-2018-6690 | Origin Validation Error vulnerability in Mcafee Application Change Control Accessing, modifying, or executing executable files vulnerability in Microsoft Windows client in McAfee Application and Change Control (MACC) 8.0.0 Hotfix 4 and earlier allows authenticated users to execute arbitrary code via file transfer from external system. | 7.1 |
| 2018-08-30 | CVE-2018-14903 | Origin Validation Error vulnerability in Epson Wf-2750 Firmware Jp02L2 EPSON WF-2750 printers with firmware JP02I2 do not properly validate files before running updates, which allows remote attackers to cause a printer malfunction or send malicious data to the printer. | 7.5 |
| 2018-08-02 | CVE-2018-3834 | Origin Validation Error vulnerability in Insteon HUB Firmware 1013 An exploitable permanent denial of service vulnerability exists in Insteon Hub running firmware version 1013. | 7.4 |
| 2018-06-14 | CVE-2018-8235 | Origin Validation Error vulnerability in Microsoft Edge A security feature bypass vulnerability exists when Microsoft Edge improperly handles requests of different origins, aka "Microsoft Edge Security Feature Bypass Vulnerability." This affects Microsoft Edge. | 4.3 |
| 2018-06-11 | CVE-2018-5157 | Origin Validation Error vulnerability in multiple products Same-origin protections for the PDF viewer can be bypassed, allowing a malicious site to intercept messages meant for the viewer. | 7.5 |
| 2018-06-11 | CVE-2018-5116 | Origin Validation Error vulnerability in multiple products WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. | 9.8 |
| 2018-06-11 | CVE-2018-5109 | Origin Validation Error vulnerability in multiple products An audio capture session can started under an incorrect origin from the site making the capture request. | 5.3 |
| 2018-06-11 | CVE-2017-7808 | Origin Validation Error vulnerability in Mozilla Firefox A content security policy (CSP) "frame-ancestors" directive containing origins with paths allows for comparisons against those paths instead of the origin. | 5.3 |
| 2018-06-11 | CVE-2017-7797 | Origin Validation Error vulnerability in Mozilla Firefox Response header name interning does not have same-origin protections and these headers are stored in a global registry. | 7.5 |
| 2018-06-11 | CVE-2016-9902 | Origin Validation Error vulnerability in multiple products The Pocket toolbar button, once activated, listens for events fired from it's own pages but does not verify the origin of incoming events. | 7.5 |