CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
91.7%
Multiple security issues were discovered in Firefox. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to conduct cross-site scripting (XSS) attacks,
bypass sandbox restrictions, obtain sensitive information, spoof the
origin of modal alerts, bypass same origin restrictions, read
uninitialized memory, cause a denial of service via program crash or hang,
or execute arbitrary code. (CVE-2017-7753, CVE-2017-7779, CVE-2017-7780,
CVE-2017-7781, CVE-2017-7783, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786,
CVE-2017-7787, CVE-2017-7788, CVE-2017-7789, CVE-2017-7791, CVE-2017-7792,
CVE-2017-7794, CVE-2017-7797, CVE-2017-7798, CVE-2017-7799, CVE-2017-7800,
CVE-2017-7801, CVE-2017-7802, CVE-2017-7803, CVE-2017-7806, CVE-2017-7807,
CVE-2017-7808, CVE-2017-7809)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 17.04 | noarch | firefox | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-dbg | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-dbgsym | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-dev | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-globalmenu | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-locale-af | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-locale-an | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-locale-ar | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-locale-as | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | firefox-locale-ast | < 55.0.1+build2-0ubuntu0.17.04.2 | UNKNOWN |
ubuntu.com/security/CVE-2017-7753
ubuntu.com/security/CVE-2017-7779
ubuntu.com/security/CVE-2017-7780
ubuntu.com/security/CVE-2017-7781
ubuntu.com/security/CVE-2017-7783
ubuntu.com/security/CVE-2017-7784
ubuntu.com/security/CVE-2017-7785
ubuntu.com/security/CVE-2017-7786
ubuntu.com/security/CVE-2017-7787
ubuntu.com/security/CVE-2017-7788
ubuntu.com/security/CVE-2017-7789
ubuntu.com/security/CVE-2017-7791
ubuntu.com/security/CVE-2017-7792
ubuntu.com/security/CVE-2017-7794
ubuntu.com/security/CVE-2017-7797
ubuntu.com/security/CVE-2017-7798
ubuntu.com/security/CVE-2017-7799
ubuntu.com/security/CVE-2017-7800
ubuntu.com/security/CVE-2017-7801
ubuntu.com/security/CVE-2017-7802
ubuntu.com/security/CVE-2017-7803
ubuntu.com/security/CVE-2017-7806
ubuntu.com/security/CVE-2017-7807
ubuntu.com/security/CVE-2017-7808
ubuntu.com/security/CVE-2017-7809
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
91.7%