CVE-2017-5456 - log back

CVE-2017-5456 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Arbitrary filesystem access
Description
+ A security issue has been found in Firefox < 53, allowing to bypass file system access protections in the sandbox using the file system request constructor through an IPC message. This allows for read and write access to the local file system.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2017-10/#CVE-2017-5456
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1344415
Notes