Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-5299

Опубликовано: 11 июн. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

A previously installed malicious Android application with same signature-level permissions as Firefox can intercept AuthTokens meant for Firefox only. Note: This issue only affects Firefox for Android. Other versions and operating systems are unaffected. This vulnerability affects Firefox < 50.

РелизСтатусПримечание
devel

not-affected

android only
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [android only]]
precise

not-affected

android only
trusty

not-affected

android only
trusty/esm

DNE

trusty was not-affected [android only]
upstream

released

50
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

not-affected

android only
yakkety

not-affected

android only

Показывать по

РелизСтатусПримечание
devel

not-affected

android only
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [android only]]
precise

not-affected

android only
trusty

not-affected

android only
trusty/esm

DNE

trusty was not-affected [android only]
upstream

not-affected

android only
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

not-affected

android only
yakkety

not-affected

android only

Показывать по

Ссылки на источники

EPSS

Процентиль: 74%
0.00822
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2016-5299

CVSS3: 7.5
nvd
больше 7 лет назад

A previously installed malicious Android application with same signature-level permissions as Firefox can intercept AuthTokens meant for Firefox only. Note: This issue only affects Firefox for Android. Other versions and operating systems are unaffected. This vulnerability affects Firefox < 50.

debian логотип

CVE-2016-5299

CVSS3: 7.5
debian
больше 7 лет назад

A previously installed malicious Android application with same signatu ...

github логотип

GHSA-cx8j-rw45-8cwm

CVSS3: 7.5
github
больше 3 лет назад

A previously installed malicious Android application with same signature-level permissions as Firefox can intercept AuthTokens meant for Firefox only. Note: This issue only affects Firefox for Android. Other versions and operating systems are unaffected. This vulnerability affects Firefox < 50.

EPSS

Процентиль: 74%
0.00822
Низкий

5 Medium

CVSS2

7.5 High

CVSS3