Mozilla · Firefox · CVE-2019-11756
**Name of the Vulnerable Software and Affected Versions**
Firefox versions prior to 71
**Description**
The issue is related to improper refcounting of soft token session objects, which could cause a use-after-free and crash, likely limited to a denial of service. It may also allow a remote attacker to gain unauthorized access to confidential data, cause a denial of service, and impact data integrity.
**Recommendations**
For versions prior to 71, update to version 71 or later to resolve the issue.