Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
By using a form with a data URI it was possible to gain access to the privileged JSONView object that had been cloned into content. Impact from exposing this object appears to be minimal, however it was a bypass of existing defense in depth mechanisms. This vulnerability affects Firefox < 70, Thunderbird < 68.2, and Firefox ESR < 68.2.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox、Mozilla Firefox ESR和Thunderbird 竞争条件问题漏洞
Vulnerability Description
Mozilla Firefox等都是美国Mozilla基金会的产品。Mozilla Firefox是一款开源Web浏览器。Mozilla Firefox ESR是Firefox(Web浏览器)的一个延长支持版本。Mozilla Thunderbird是一套从Mozilla Application Suite独立出来的电子邮件客户端软件。 Mozilla Firefox 70之前版本、Firefox ESR 68.2之前版本和Thunderbird 68.2之前版本中存在安全漏洞。攻击者可利用该漏洞绕过安全
CVSS Information
N/A
Vulnerability Type
N/A