CVE-2016-9079
HIGH7.5⚠ KEVEPSS 84.8%firefox-esr - security update
發布日:2018/6/11修改日:2026/4/28加入 CISA KEV 日:2023/6/22
描述
A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows. This vulnerability affects Firefox < 50.0.2, Firefox ESR < 45.5.1, and Thunderbird < 45.5.1.
受影響套件(2)
- Debian/firefox-esrfrom 0, < 45.5.1esr-1
- Debian/firefox-esrfrom 0, < 45.5.1esr-1~deb8u1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |