VDB
CVE-2016-5288
CVE-2016-5288
PUBLISHED
Web content could access information in the HTTP cache if e10s is disabled. This can reveal some visited URLs and the contents of those pages. This issue affects Firefox 48 and 49. This vulnerability affects Firefox < 49.0.2.
EPSS 0.72% · 72.9th percentile
Risk Scores
EPSS Score
0.72%
72.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | firefox | 0, 24.0+build1-0ubuntu1, 25.0+build3-0ubuntu0.13.10.1 |
| Ubuntu:16.04:LTS | firefox | 0, 41.0.2+build2-0ubuntu1, 42.0+build2-0ubuntu1 |
Timeline
- Oct 25, 2016 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2016-5288 third-party-advisory
- https://ubuntu.com/security/notices/USN-3111-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2016-5288 third-party-advisory