CVE-2017-5393 log

Severity Medium
Remote Yes
Type Access restriction bypass
The mozAddonManager in Firefox < 51 allows for the installation of extensions from the CDN for, a publicly accessible site. This could allow malicious extensions to install additional extensions from the CDN in combination with an XSS attack on Mozilla AMO sites.
Group Package Affected Fixed Severity Status Ticket
AVG-157 firefox 50.1.0-1 51.0.1-1 Critical Fixed
Date Advisory Group Package Severity Type
29 Jan 2017 ASA-201701-39 AVG-157 firefox Critical multiple issues