CVE-2016-2820

EPSS 0.42% · P62 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-2820

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Firefox Health Reports (aka FHR or about:healthreport) feature in Mozilla Firefox before 46.0 does not properly restrict the origin of events, which makes it easier for remote attackers to modify sharing preferences by leveraging access to the remote-report IFRAME element.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Mozilla Firefox 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Mozilla Firefox Health Report（健康报告）是美国Mozilla基金会开发的一款用于了解Firefox浏览器性能的插件，它通过收集用户的一些使用数据，进而提供Firefox浏览器的稳定性及性能的变化情况，以及优化提示。 Mozilla Firefox 46之前版本的Firefox Health Report功能中存在安全漏洞，该漏洞源于程序没有正确限制事件源。远程攻击者可通过访问remote-report IFRAME元素利用该漏洞修改共享引用。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2016-2820

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-2820

请登录查看更多情报信息。

🔗 http://www.mozilla.org/security/announce/2016/mfsa2016-48.htmlx_refsource_CONFIRM
🔗 http://www.securitytracker.com/id/1035692vdb-entryx_refsource_SECTRACK
🔗 http://www.ubuntu.com/usn/USN-2936-3vendor-advisoryx_refsource_UBUNTU
🔗 http://www.ubuntu.com/usn/USN-2936-1vendor-advisoryx_refsource_UBUNTU
🔗 https://security.gentoo.org/glsa/201701-15vendor-advisoryx_refsource_GENTOO
🔗 http://lists.opensuse.org/opensuse-updates/2016-05/msg00038.htmlvendor-advisoryx_refsource_SUSE
🔗 http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00005.htmlvendor-advisoryx_refsource_SUSE
https://nvd.nist.gov/vuln/detail/CVE-2016-2820

Same Patch Batch · n/a · 2016-04-30 · 19 CVEs total

CVE-2016-2813		Mozilla Firefox 安全漏洞
CVE-2016-1343		Cisco Information Server XML解析器安全漏洞
CVE-2016-1201		LOCKON EC-CUBE 跨站请求伪造漏洞
CVE-2016-1200		LOCKON EC-CUBE 安全漏洞
CVE-2016-1199		LOCKON EC-CUBE 安全漏洞
CVE-2016-1111		多款Adobe产品双重释放漏洞
CVE-2016-2817		Mozilla Firefox 安全漏洞
CVE-2016-2816		Mozilla Firefox 安全漏洞
CVE-2016-2814		Mozilla Firefox和Firefox ESR libstagefright 缓冲区溢出漏洞
CVE-2016-2804		Mozilla Firefox 内存损坏漏洞
CVE-2016-2812		Mozilla Firefox 竞争条件漏洞
CVE-2016-2811		Mozilla Firefox 释放后重用漏洞
CVE-2016-2810		Mozilla Firefox 安全漏洞
CVE-2016-2809		Mozilla Firefox Maintenance Service升级程序安全漏洞
CVE-2016-2808		Mozilla Firefox和Firefox ESR 安全漏洞
CVE-2016-2807		Mozilla Firefox和Firefox ESR 内存损坏漏洞
CVE-2016-2806		Mozilla Firefox和Firefox ESR 内存损坏漏洞
CVE-2016-2805		Mozilla Firefox ESR 内存损坏漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2016-2820

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2016-2820

I. Basic Information for CVE-2016-2820

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-2820

III. Intelligence Information for CVE-2016-2820

Same Patch Batch · n/a · 2016-04-30 · 19 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2016-2820

Leave a comment