A use-after-free vulnerability can occur when listeners are removed from the event listener manager while still in use, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
CPE | Name | Operator | Version |
---|---|---|---|
firefox | lt | 67.0 | |
firefox_esr | lt | 60.7.0 | |
thunderbird | lt | 60.7.0 |