AI Score
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Push notifications stored on disk in private browsing mode were not being encrypted potentially allowing the leak of sensitive information. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.
bugzilla.mozilla.org/show_bug.cgi?id=1843046
www.mozilla.org/security/advisories/mfsa2023-34/
www.mozilla.org/security/advisories/mfsa2023-36/
www.mozilla.org/security/advisories/mfsa2023-38/