CVE-2019-11756

Summary

Improper refcounting of soft token session objects could cause a use-after-free and crash (likely limited to a denial of service). This vulnerability affects Firefox < 71.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxbefore 71affected

Weaknesses

  • Use-after-free of SFTKSession object

ADP Enrichment

CVE Program Container

Additional References

References