PT-2018-5063 · Mozilla+2 · Firefox For Android+2

Ken Okuyama

Publicado

2016-11-17

Atualizado

2024-12-12

CVE-2016-9061

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Firefox for Android versions prior to 50

Description A previously installed malicious Android application with specific signature-level permissions can access API keys intended for Firefox. This issue is exclusive to Firefox for Android, with other versions and operating systems remaining unaffected.

Recommendations For Firefox for Android versions prior to 50, update to version 50 or later to resolve the issue.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-275

Identificadores relacionados

ALT-PU-2016-2307

CVE-2016-9061

OPENSUSE-SU-2016_3011-1

OPENSUSE-SU-2024:10071-1

OPENSUSE-SU-2024:14572-1

Produtos afetados

Alt Linux

Firefox For Android

Suse

PT-2018-5063 · Mozilla+2 · Firefox For Android+2

CVE-2016-9061

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2063