9/14/2023 0 Comments Ftp mozilla![]() #CVE-2023-32209: Persistent DoS via favicon image Reporter Sam Ezeh Impact moderate DescriptionĪ maliciously crafted favicon could have led to an out of memory crash. Service workers could reveal script base URL due to dynamic import(). #CVE-2023-32208: Leak of script base URL in service workers via import() Reporter Anne van Kesteren Impact moderate Description #CVE-2023-32207: Potential permissions request bypass via clickjacking Reporter Hafiizh Impact high DescriptionĪ missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. #CVE-2023-32206: Crash in RLBox Expat driver Reporter Irvan Kurniawan Impact high DescriptionĪn out-of-bound read could have led to a crash in the RLBox Expat driver. These could have led to potential user confusion and spoofing attacks. In multiple cases browser prompts could have been obscured by popups controlled by content. ![]() #CVE-2023-32205: Browser prompts could have been obscured by popups Reporter Alesandro Ortiz Impact high Description Mozilla Foundation Security Advisory 2023-16 Security Vulnerabilities fixed in Firefox 113 Announced Impact high Products Firefox Fixed in ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |