suse · CVE-2014-1483

Quick triage

Priority: critical Published: 2021-05-30 13:18:50 UTC Updated: 2026-04-18 18:44:17 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2014-1483 severity critical: SUSE including 74 source package names (MozillaFirefox-140.2.0-160000.1.2, MozillaFirefox-24.3.0esr-0.4.2.1, …), 144 product×package rows across 32 product lines (SUSE Linux Enterprise Desktop 11 SP3, SUSE Linux Enterprise Desktop 12, … (32 product lines)): Fixed 144.

Description:

Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to bypass the Same Origin Policy and obtain sensitive information by using an IFRAME element in conjunction with certain timing measurements involving the document.caretPositionFromPoint and document.elementFromPoint functions.

cvelogic Threat Intelligence