Medium severity5.5NVD Advisory· Published Jun 11, 2018· Updated Jun 17, 2026
CVE-2017-5414
CVE-2017-5414
Description
The file picker dialog can choose and display the wrong local default directory when instantiated. On some operating systems, this can lead to information disclosure, such as the operating system or the local account name. This vulnerability affects Firefox < 52 and Thunderbird < 52.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8<52+ 1 more
- (no CPE)range: <52
- (no CPE)range: unspecified
<52+ 1 more
- (no CPE)range: <52
- (no CPE)range: unspecified
- osv-coords4 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweedpkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Package%20Hub%2012
< 128.5.1-1.1+ 3 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 92.0-1.2
- (no CPE)range: < 91.1.1-1.1
- (no CPE)range: < 52.1.0-30.1
Patches
Vulnerability mechanics
References
5- www.securityfocus.com/bid/96692nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1037966nvdThird Party AdvisoryVDB Entry
- bugzilla.mozilla.org/show_bug.cginvdIssue TrackingVendor Advisory
- www.mozilla.org/security/advisories/mfsa2017-05/nvdVendor Advisory
- www.mozilla.org/security/advisories/mfsa2017-09/nvdVendor Advisory
News mentions
0No linked articles in our index yet.