CVE-2016-5258
CVSS v3.0
8.8 (High)
CVSS v2.0
6.8 (Medium)
EPSS
2.55 % (90th)
Affected Products
3
Advisories
11
Use-after-free vulnerability in the WebRTC socket thread in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code by leveraging incorrect free operations on DTLS objects during the shutdown of a WebRTC session.
Weaknesses
- CWE-416
- Use After Free
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2016-08-05 01:59:14
(8 years ago) - Updated Date
-
2019-12-27 16:08:55
(4 years ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...