Security Advisory

CVE-2017-5456

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-06-11 21:00:00

Last updated 2024-08-05 15:04:14

Assigner mozilla

State PUBLISHED

Description

A mechanism to bypass file system access protections in the sandbox using the file system request constructor through an IPC message. This allows for read and write access to the local file system. This vulnerability affects Firefox ESR < 52.1 and Firefox < 53.

← Browse all CVEs View on cve.org ↗