A privilege escalation vulnerability has been found in Firefox prior to 71.0. When running, the updater service wrote status and log files to an unrestricted location; potentially allowing an unprivileged process to locate and exploit a vulnerability in file handling in the updater service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |
||
mozilla firefox_esr |
||
mozilla thunderbird |
||
opensuse leap 15.1 |