CVE-2017-5381

2018-06-11T21:29:00
ID CVE-2017-5381
Type cve
Reporter cve@mitre.org
Modified 2019-10-03T00:03:00

Description

The "export" function in the Certificate Viewer can force local filesystem navigation when the "common name" in a certificate contains slashes, allowing certificate content to be saved in unsafe locations with an arbitrary filename. This vulnerability affects Firefox < 51.