N/A

Under certain circumstances the "fetch()" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessible to users if they share a common profile while browsing. This vulnerability affects Firefox ESR < 52.7 and Firefox < 59.

N/A

N/A

Mozilla Firefox和Firefox ESR 安全漏洞

Mozilla Firefox和Firefox ESR都是美国Mozilla基金会开发的浏览器产品。Firefox是一款开源Web浏览器；Firefox ESR是Firefox的一个延长支持版本。 Mozilla Firefox 59之前版本和Firefox ESR 52.7之前版本中存在安全漏洞。远程攻击者可通过诱使用户访问特制的网站利用该漏洞获取本地缓存的数据。

N/A

N/A