Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2017-5380 - CERT CVE
CVE-2017-5380
ID
CVE-2017-5380
Sažetak
A potential use-after-free found through fuzzing during DOM manipulation of SVG content. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
Reference
http://rhn.redhat.com/errata/RHSA-2017-0190.html
http://rhn.redhat.com/errata/RHSA-2017-0238.html
http://www.securityfocus.com/bid/95769
http://www.securitytracker.com/id/1037693
https://bugzilla.mozilla.org/show_bug.cgi?id=1322107
https://security.gentoo.org/glsa/201702-13
https://security.gentoo.org/glsa/201702-22
https://www.debian.org/security/2017/dsa-3771
https://www.debian.org/security/2017/dsa-3832
https://www.mozilla.org/security/advisories/mfsa2017-01/
https://www.mozilla.org/security/advisories/mfsa2017-02/
https://www.mozilla.org/security/advisories/mfsa2017-03/
CVSS
Base:
7.5
Impact:
6.4
Exploitability:
10.0
Pristup
Vektor
Složenost
Autentikacija
NETWORK
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
PARTIAL
PARTIAL
PARTIAL
CVSS vektor
AV:N/AC:L/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje
02-08-2018 - 19:44
Objavljeno
11-06-2018 - 21:29
