CVE-2016-5288
Description
Web content could access information in the HTTP cache if e10s is disabled. This can reveal some visited URLs and the contents of those pages. This issue affects Firefox 48 and 49. This vulnerability affects Firefox < 49.0.2.
Risk Information
Base Score
5.9
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.722
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2016-5287,CVE-2016-5288 are fixed in Update for Mozilla Firefox For Mac (49.0.2) | Mac |
| Vulnerabilities CVE-2016-5287,CVE-2016-5288 are affected in Mozilla Firefox for Mac 49.0.1 | Mac |
| Mozilla Open Source web browser (USN-3111-1) firefox_49.0.2+build2-0ubuntu0.12.04.1_i386.deb | Linux |
| Mozilla Open Source web browser (USN-3111-1) firefox_49.0.2+build2-0ubuntu0.12.04.1_amd64.deb | Linux |
| Mozilla Open Source web browser (USN-3111-1) firefox_49.0.2+build2-0ubuntu0.14.04.1_i386.deb | Linux |
| Mozilla Open Source web browser (USN-3111-1) firefox_49.0.2+build2-0ubuntu0.14.04.1_amd64.deb | Linux |
| Mozilla Open Source web browser (USN-3111-1) firefox_49.0.2+build2-0ubuntu0.16.04.2_i386.deb | Linux |
| Mozilla Open Source web browser (USN-3111-1) firefox_49.0.2+build2-0ubuntu0.16.04.2_amd64.deb | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-607000 | Mozilla Firefox For Mac (124.0) |
| PATCH-611870 | Mozilla Firefox For Mac (142.0.1) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234