N/A

Given an installed malicious file picker application, an attacker was able to steal and upload local files of their choosing, regardless of the actually files picked. *Note: This issue only affected Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 68.11.

N/A

N/A

Mozilla Firefox ESR 代码问题漏洞

Mozilla Firefox ESR是美国Mozilla基金会的Firefox(Web浏览器)的一个延长支持版本。 基于Android平台的Mozilla Firefox ESR 68.11之前版本中存在安全漏洞。攻击者可借助恶意的应用程序利用该漏洞窃取并上传攻击者制定的本地文件。

N/A

N/A