Mozilla Firefox < 62 Multiple Critical Vulnerabilities (macOS)

High Nessus Plugin ID 117291

Synopsis

A web browser installed on the remote macOS or Mac OS X host is affected by multiple critical and high severity vulnerabilities.

Description

The version of Mozilla Firefox installed on the remote macOS or Mac OS X host is prior to 62. It is, therefore, affected by multiple critical and high severity vulnerabilities.

Solution

Upgrade to Mozilla Firefox version 62.0.0 or later.

See Also

http://www.nessus.org/u?8517426b

Plugin Details

Severity: High

ID: 117291

File Name: macos_firefox_62_0_0.nasl

Version: 1.3

Type: local

Agent: macosx

Published: 2018/09/06

Modified: 2018/09/17

Dependencies: 55417

Risk Information

Risk Factor: High

CVSS Score Source: manual

CVSS Score Rationale: Score based on analysis of the vendor advisory.

CVSSv2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSSv3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:mozilla:firefox, cpe:/o:apple:mac_os_x

Required KB Items: MacOSX/Firefox/Installed

Patch Publication Date: 2018/09/05

Vulnerability Publication Date: 2018/09/05

Reference Information

CVE: CVE-2017-16541, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379, CVE-2018-12375, CVE-2018-12376, CVE-2018-12381, CVE-2018-12382, CVE-2018-12383

BID: 101665

MFSA: 2018-20

IAVA: 2018-A-0288