HIGH 7.5
KEV
CVE-2016-9079
A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows. This vulnerability affects Firefox < 50.0.2, Firefox ESR < 45.5.1, and Thunderbird < 45.5.1.
CVSS v3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA Known Exploited Vulnerability
- Ajouté au KEV
- 2023-06-22
- Deadline remédiation
- 2023-07-13
- Action requise
- Apply updates per vendor instructions.
- Ransomware
- Non
Apps mobiles affectées
Configurations CPE vulnérables
| Vendor | Produit | Plateforme | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| mozilla | firefox | Android | <50.0.2 | cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:* |
| mozilla | firefox | iOS | <50.0.2 | cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:* |
| mozilla | firefox | Android | <45.5.1 | cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:* |
| mozilla | firefox | iOS | <45.5.1 | cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:* |