CVE-2016-1943 — Mozilla Firefox vulnerability

CWE-175 documents4 sources

Severity

4.7MEDIUMNVD

EPSS

0.6%

top 31.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJan 31

Latest updateMay 14

Description

Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via the scrollTo method.

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

▶NVDopensuse/opensuse13.1, 13.2+1

GHSA

GHSA-gmxm-22mx-7m9q: Mozilla Firefox before 44↗2022-05-14

▶

Red Hat

openjpeg2: Multiple security issues↗2016-10-27

▶

Red Hat

Mozilla: Addressbar spoofing attacks (MFSA 2016-09)↗2016-01-26

▶

Bugzilla

CVE-2016-1943 Mozilla: Addressbar spoofing attacks (MFSA 2016-09)↗2016-01-26

▶