CVE-2017-5391

CVSS v3.0 9.8 (Critical)

CVSS v2.0 7.5 (High)

EPSS 0.33 % (72^th)

Affected Products 1

Advisories 4

Special "about:" pages used by web content, such as RSS feeds, can load privileged "about:" pages in an iframe. If a content-injection bug were found in one of those pages this could allow for potential privilege escalation. This vulnerability affects Firefox < 51.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2018-06-11 21:29:03
(6 years ago)
Updated Date: 2019-10-03 00:03:26
(5 years ago)

Affected Products

Mozilla

Firefox

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 51.0 version	cpe:2.3:a:mozilla:firefox		< 51.0