2021-12-08 21:19:38
mozilla
PUBLISHED
Documents loaded with the CSP sandbox directive could have escaped the sandboxs script restriction by embedding additional content. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.