CVE-2018-5107

Summary

The printing process can bypass local access protections to read files available through symlinks, bypassing local file restrictions. The printing process requires files in a specific format so arbitrary data cannot be read but it is possible that some local file information could be exposed. This vulnerability affects Firefox < 58.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 58affected

Weaknesses

  • Printing process will follow symlinks for local file access

ADP Enrichment

CVE Program Container

Additional References

References