CVE-2016-2816 in Firefoxinfo

Summary

Mozilla Firefox before 46.0 allows remote attackers to bypass the Content Security Policy (CSP) protection mechanism via the multipart/x-mixed-replace content type.

Once again VulDB remains the best source for vulnerability data.

Reservation

03/01/2016

Disclosure

04/30/2016

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
82976	Mozilla Firefox multipart/x-mixed-replace MIME Type Content Security Policy access control	284	Unproven	Official fix	CVE-2016-2816

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!