CVE-2016-9901
Severity
9.8CRITICAL
EPSS
2.0%
top 16.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJun 11
Latest updateMay 14
Description
HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9
Affected Packages8 packages
Also affects: Enterprise Linux 7.3, 7.4, 7.5
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-6g72-x2jp-6592: HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-sav↗2022-05-14
CVEList▶
CVE-2016-9901: HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-sav↗2018-06-11
OSV▶
CVE-2016-9901: HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-sav↗2018-06-11
📋Vendor Advisories
3💬Community
1Bugzilla▶
CVE-2016-9901 Mozilla: Data from Pocket server improperly sanitized before execution (MFSA 2016-94, MFSA 2016-95)↗2016-12-13