CVE-2019-17011
Description
Under certain conditions, when retrieving a document from a DocShell in the antitracking code, a race condition could cause a use-after-free condition and a potentially exploitable crash. This vulnerability affects Thunderbird < 68.3, Firefox ESR < 68.3, and Firefox < 71.
- CVSS Version 3.1
- CVSS Version 2.0
nvd
CVE ID: CVE-2019-17011
Base Score: 7.5
Base Severity: HIGH
Vector String:CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.6
nvd
CVE ID: CVE-2019-17011
Base Score: 5.1
Base Severity: MEDIUM
Vector String:AV:N/AC:H/Au:N/C:P/I:P/A:P
Refrence: NVD