20
edits
Changes
Be clear that sec-critical includes full chains as well as sandbox bypasses
The following items are keywords for the severity of an issue.
;'''sec-critical''': Exploitable vulnerabilities which can lead to the widespread compromise of many users requiring no more than normal browsing actions.This includes both "full chains" with a content process remote code execution combined with a sandbox escape, as well as sandbox bypasses where remote code execution is achieved directly in an unsandboxed process.
{| class="wikitable collapsible " style="width: 100%"
! ''sec-critical Examples:''
