← voltar
CVE-2017-5397

CVE-2017-5397

EPSS 3.2%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 3.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
11 jun 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
The cache directory on the local file system is set to be world writable. Firefox defaults to extracting libraries from this cache. This allows for the possibility of an installed malicious application or tools with write access to the file system to replace files used by Firefox with their own versions. This vulnerability affects Firefox < 51.0.3.
Produtos afetados
Mozilla · Firefox

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugzilla.mozilla.org/show_bug.cgi?id=1337304https://www.mozilla.org/security/advisories/mfsa2017-04/http://www.securityfocus.com/bid/96144