The CryptoKey interface implementation in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 lacks status checking, which allows attackers to have an unspecified impact via vectors related to a cryptographic key.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 41.0.2 |