Wednesday, April 21, 2021

MFSA2021-15 Firefox: Security Vulnerabilities fixed in Firefox ESR 78.10 (CVE-2021-23999)

If a Blob URL was loaded through some unusual user interaction, it could have been loaded by the System Principal and granted additional privileges that should not be granted to web content.
  • mozilla-firefox-esr-upgrade-78_10

  • References
  • CVE - 2021-23999


    Copyright © 2020 Cyber Details - Vulnerability Database™

    Thanks for everything Templateism - You should have written the code a little more complicated