CVE-2016-2806
published 2016-04-30CVE-2016-2806: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 46.0 and Firefox ESR 45.x before 45.1 allow remote attackers to cause a…
high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 46.0 and Firefox ESR 45.x before 45.1 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | firefox | < firefox 46.0-1 (sid) | firefox 46.0-1 (sid) |
| debian | firefox-esr | < firefox 46.0-1 (sid) | firefox 46.0-1 (sid) |
| mozilla | firefox | <= 45.0.2 | — |
| mozilla | firefox | — | — |
| mozilla | firefox | >= 0 < 46.0+build5-0ubuntu0.14.04.2 | 46.0+build5-0ubuntu0.14.04.2 |
| mozilla | firefox | >= 0 < 46.0.1+build1-0ubuntu0.14.04.3 | 46.0.1+build1-0ubuntu0.14.04.3 |
| mozilla | firefox | >= 0 < 46.0+build5-0ubuntu0.16.04.2 | 46.0+build5-0ubuntu0.16.04.2 |
| mozilla | firefox | >= 0 < 46.0.1+build1-0ubuntu0.16.04.2 | 46.0.1+build1-0ubuntu0.16.04.2 |
| opensuse | leap | — | — |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| suse | linux_enterprise | — | — |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH