8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.162 Low
EPSS
Percentile
95.9%
04/26/2016
Critical
Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, inject arbitrary code, elevate privileges, cause denial of service or obtain sensitive information.
Mozilla Firefox versions earlier than 46
Mozilla Firefox ESR versions earlier than 38.8
Mozilla Firefox ESR 45 versions earlier than 45.1
Update to the latest version
Get Firefox
Get Firefox ESR
ACE
CVE-2016-28085.1High
CVE-2016-28204.3Warning
CVE-2016-28174.3Warning
CVE-2016-28164.3Warning
CVE-2016-28146.8High
CVE-2016-28134.3Warning
CVE-2016-28125.1High
CVE-2016-28116.8High
CVE-2016-28104.3Warning
CVE-2016-28095.8High
CVE-2016-17804.3Warning
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1780
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2808
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2809
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2810
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2811
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2812
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2813
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2814
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2816
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2817
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2820
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Mozilla-Firefox-ESR/
threats.kaspersky.com/en/product/Mozilla-Firefox-for-Android/
threats.kaspersky.com/en/product/Mozilla-Firefox/
www.mozilla.org/en-US/firefox/organizations/
www.mozilla.org/en-US/security/advisories/
www.mozilla.org/firefox/new/?scene=2
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.162 Low
EPSS
Percentile
95.9%