CCE-94543-6| Platform: cpe:/a:mozilla:firefox_rpm | Date: (C)2021-06-15 (M)2023-07-04 |
Use of versions of an application which are not supported by the vendor are not permitted. Vendors respond to security flaws with updates and patches. These updates are not available for unsupported version which can leave the application vulnerable to attack.
Parameter:
[71.0]
Technical Mechanism:
Upgrade the version of the browser to an approved version by obtaining software from the vendor or other trusted source.
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 9.4 | Attack Vector: NETWORK |
| Exploit Score: 3.9 | Attack Complexity: LOW |
| Impact Score: 5.5 | Privileges Required: NONE |
| Severity: CRITICAL | User Interaction: NONE |
| Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H | Scope: UNCHANGED |
| | Confidentiality: HIGH |
| | Integrity: LOW |
| | Availability: HIGH |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:60314 |
