Given an installed malicious file picker application, an attacker was able to overwrite local files and thus overwrite Firefox settings (but not access the previous profile). *Note: This issue only affected Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 68.11.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Mozilla

Firefox ESR

Affected Versions:

unspecified

References

https://www.mozilla.org/security/advisories/mfsa2020-31/

https://bugzilla.mozilla.org/show_bug.cgi?id=1652360

Published: 2020-08-10T17:43:24

Last Modified: 2024-08-04T13:22:30.783Z

Copied to clipboard!