Vulnerability Details : CVE-2019-9803
The Upgrade-Insecure-Requests (UIR) specification states that if UIR is enabled through Content Security Policy (CSP), navigation to a same-origin URL must be upgraded to HTTPS. Firefox will incorrectly navigate to an HTTP URL rather than perform the security upgrade requested by the CSP in some circumstances, allowing for potential man-in-the-middle attacks on the linked resources. This vulnerability affects Firefox < 66.
Products affected by CVE-2019-9803
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2019-9803
0.13%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 29 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2019-9803
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:N |
8.6
|
4.9
|
NIST | |
|
7.4
|
HIGH | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
2.2
|
5.2
|
NIST |
CWE ids for CVE-2019-9803
-
The product does not properly verify that the source of data or communication is valid.Assigned by: nvd@nist.gov (Primary)
References for CVE-2019-9803
-
https://w3c.github.io/webappsec-upgrade-insecure-requests/
Upgrade Insecure RequestsThird Party Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=1437009
1437009 - CSP is not propagated to the TriggeringPrincipal for right-click new tab,ctrl-click new tab, drag & drop new tab casesIssue Tracking;Vendor Advisory
-
https://www.mozilla.org/security/advisories/mfsa2019-07/
Security vulnerabilities fixed in Firefox 66 — MozillaVendor Advisory
-
https://bugzilla.mozilla.org/show_bug.cgi?id=1515863
Access DeniedIssue Tracking;Permissions Required;Vendor Advisory
Jump to