The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. *Note: this issue only affects Firefox on Windows operating systems.* External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2020-17/#CVE-2020-12388
Acknowledgments: Name: the Mozilla project Upstream: James Forshaw (Google Project Zero)
Statement: This issue only affects Firefox on Windows operating systems. Firefox on Linux is not affected.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-12388