Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
Vulnerability Description
An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser, and persisted between containers and normal/private browsing mode, but not profiles. This vulnerability was fixed in Firefox 140, Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox和Mozilla Firefox ESR 安全漏洞
Vulnerability Description
Mozilla Firefox和Mozilla Firefox ESR都是美国Mozilla基金会的产品。Mozilla Firefox是一款开源Web浏览器。Mozilla Firefox ESR是Firefox(Web浏览器)的一个延长支持版本。 Mozilla Firefox 140之前版本和Mozilla Firefox ESR 115.25之前版本、128.12之前版本存在安全漏洞,该漏洞源于WebCompat扩展存在缺陷,可能导致浏览器UUID泄露。
CVSS Information
N/A
Vulnerability Type
N/A