Vulnerability & Exploit Database

Back to search

MFSA2017-27 Firefox: Security vulnerabilities fixed in Firefox 57.0.1 (CVE-2017-7843)

Severity CVSS Published Added Modified
4 (AV:L/AC:M/Au:N/C:P/I:P/A:P) November 28, 2017 December 04, 2017 December 04, 2017

Description

When Private Browsing mode is used, it is possible for a web worker to write persistent data to IndexedDB and fingerprint a user uniquely. IndexedDB should not be available in Private Browsing mode and this stored data will persist across multiple private browsing mode sessions because it is not cleared when exiting.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

mozilla-firefox-upgrade-57_0_1

Related Vulnerabilities