Attila

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 91.7 Thunderbird versions prior to 91.7 **Description** The issue is related to inadequate access control, allowing an attacker to read files from the /tmp directory and potentially gain access to confidential information. This is because temporary files were downloaded to a shared /tmp directory instead of a user-specific directory. The behavior was initially changed but then reverted to the original, more secure approach. The issue affects Firefox for macOS and Linux, as well as Thunderbird. **Recommendations** For Firefox versions prior to 91.7, update to version 91.7 or later to resolve the issue. For Thunderbird versions prior to 91.7, update to version 91.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the /tmp directory to minimize the risk of exploitation.