System	Score	Found at
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.01944	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
epss	0.02909	https://api.first.org/data/v1/epss?cve=CVE-2017-5377
cvssv2	7.5	https://nvd.nist.gov/vuln/detail/CVE-2017-5377
cvssv3	9.8	https://nvd.nist.gov/vuln/detail/CVE-2017-5377
archlinux	Critical	https://security.archlinux.org/AVG-157
generic_textual	critical	https://www.mozilla.org/en-US/security/advisories/mfsa2017-01

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2017-5377
		https://bugzilla.mozilla.org/show_bug.cgi?id=1306883
		https://www.mozilla.org/security/advisories/mfsa2017-01/
		http://www.securityfocus.com/bid/95761
		http://www.securitytracker.com/id/1037693
ASA-201701-39		https://security.archlinux.org/ASA-201701-39
AVG-157		https://security.archlinux.org/AVG-157
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
CVE-2017-5377		https://nvd.nist.gov/vuln/detail/CVE-2017-5377
mfsa2017-01		https://www.mozilla.org/en-US/security/advisories/mfsa2017-01
USN-3175-1		https://usn.ubuntu.com/3175-1/

No exploits are available.

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2017-5377

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2017-5377

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Percentile	0.82731
EPSS Score	0.01944
Published At	Sept. 9, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:09:22.381734+00:00	Mozilla Importer	Import	https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2017/mfsa2017-01.yml	37.0.0