The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended.
Base Score: 4.3
Impact Score: 2.9
Exploitability Score: 8.6
Base Score: 6.1
Impact Score: 2.7
Exploitability Score: 2.8
|802019||Firefox < 44 Multiple Vulnerabilities||Log Correlation Engine||Web Clients|
|91379||GLSA-201605-06 : Mozilla Products: Multiple vulnerabilities (Logjam) (SLOTH)||Nessus||Gentoo Local Security Checks|
|9075||Mozilla Firefox < 44.0 Multiple Vulnerabilities||Nessus Network Monitor||Web Clients|
|88459||Firefox < 44 Multiple Vulnerabilities (Mac OS X)||Nessus||MacOS X Local Security Checks|