Vulnerabilities > Origin Validation Error

DATE CVE VULNERABILITY TITLE RISK
2018-08-30 CVE-2018-14903 Origin Validation Error vulnerability in Epson Wf-2750 Firmware Jp02L2
EPSON WF-2750 printers with firmware JP02I2 do not properly validate files before running updates, which allows remote attackers to cause a printer malfunction or send malicious data to the printer.
network
low complexity
epson CWE-346
7.5
2018-08-02 CVE-2018-3834 Origin Validation Error vulnerability in Insteon HUB Firmware 1013
An exploitable permanent denial of service vulnerability exists in Insteon Hub running firmware version 1013.
network
high complexity
insteon CWE-346
7.4
2018-06-14 CVE-2018-8235 Origin Validation Error vulnerability in Microsoft Edge
A security feature bypass vulnerability exists when Microsoft Edge improperly handles requests of different origins, aka "Microsoft Edge Security Feature Bypass Vulnerability." This affects Microsoft Edge.
network
low complexity
microsoft CWE-346
4.3
2018-06-11 CVE-2018-5157 Origin Validation Error vulnerability in multiple products
Same-origin protections for the PDF viewer can be bypassed, allowing a malicious site to intercept messages meant for the viewer.
network
low complexity
redhat debian canonical mozilla CWE-346
7.5
2018-06-11 CVE-2018-5116 Origin Validation Error vulnerability in multiple products
WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin.
network
low complexity
mozilla canonical CWE-346
critical
9.8
2018-06-11 CVE-2018-5109 Origin Validation Error vulnerability in multiple products
An audio capture session can started under an incorrect origin from the site making the capture request.
network
low complexity
mozilla canonical CWE-346
5.3
2018-06-11 CVE-2017-7808 Origin Validation Error vulnerability in Mozilla Firefox
A content security policy (CSP) "frame-ancestors" directive containing origins with paths allows for comparisons against those paths instead of the origin.
network
low complexity
mozilla CWE-346
5.3
2018-06-11 CVE-2017-7797 Origin Validation Error vulnerability in Mozilla Firefox
Response header name interning does not have same-origin protections and these headers are stored in a global registry.
network
low complexity
mozilla CWE-346
7.5
2018-06-11 CVE-2016-9902 Origin Validation Error vulnerability in multiple products
The Pocket toolbar button, once activated, listens for events fired from it's own pages but does not verify the origin of incoming events.
network
low complexity
redhat mozilla CWE-346
7.5
2018-05-09 CVE-2018-8112 Origin Validation Error vulnerability in Microsoft Edge
A security feature bypass vulnerability exists when Microsoft Edge improperly handles requests of different origins, aka "Microsoft Edge Security Feature Bypass Vulnerability." This affects Microsoft Edge.
network
low complexity
microsoft CWE-346
4.3