View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2014-1483 severity critical: SUSE including 74 source package names (MozillaFirefox-140.2.0-160000.1.2, MozillaFirefox-24.3.0esr-0.4.2.1, …), 144 product×package rows across 32 product lines (SUSE Linux Enterprise Desktop 11 SP3, SUSE Linux Enterprise Desktop 12, … (32 product lines)): Fixed 144.
Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to bypass the Same Origin Policy and obtain sensitive information by using an IFRAME element in conjunction with certain timing measurements involving the document.caretPositionFromPoint and document.elementFromPoint functions.