VYPR
High severity7.5NVD Advisory· Published Jun 11, 2018· Updated Jun 17, 2026

CVE-2017-5454

CVE-2017-5454

Description

A mechanism to bypass file system access protections in the sandbox to use the file picker to access different files than those selected in the file picker through the use of relative paths. This allows for read only access to the local file system. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 52.1, and Firefox < 53.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

55

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.