CVE-2016-2811

CVSS v3.0 8.8 (High)

CVSS v2.0 6.8 (Medium)

EPSS 5.57 % (93^th)

Affected Products 1

Advisories 3

Use-after-free vulnerability in the ServiceWorkerInfo class in the Service Worker subsystem in Mozilla Firefox before 46.0 allows remote attackers to execute arbitrary code via vectors related to the BeginReading method.

Weaknesses

CWE-NVD-Other

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2016-04-30 17:59:08
(8 years ago)
Updated Date: 2017-07-01 01:29:40
(7 years ago)

Affected Products

Mozilla

Firefox

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox 45.0.2 and prior versions	cpe:2.3:a:mozilla:firefox		<= 45.0.2