VYPR
Unrated severityNVD Advisory· Published Jan 8, 2020· Updated Aug 5, 2024

CVE-2019-17009

CVE-2019-17009

Description

When running, the updater service wrote status and log files to an unrestricted location; potentially allowing an unprivileged process to locate and exploit a vulnerability in file handling in the updater service. *Note: This attack requires local system access and only affects Windows. Other operating systems are not affected.*. This vulnerability affects Thunderbird < 68.3, Firefox ESR < 68.3, and Firefox < 71.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

35

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.