A website could have obscured the fullscreen notification by using an option element by introducing lag via an expensive computational function. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 115.
References
Link | Resource |
---|---|
https://bugzilla.mozilla.org/show_bug.cgi?id=1832195 | Issue Tracking Permissions Required |
https://security.gentoo.org/glsa/202401-10 | |
https://www.mozilla.org/security/advisories/mfsa2023-22/ | Vendor Advisory |
Configurations
History
07 Jan 2024, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Jul 2023, 13:49
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CWE | NVD-CWE-noinfo | |
References | (MISC) https://www.mozilla.org/security/advisories/mfsa2023-22/ - Vendor Advisory | |
References | (MISC) https://bugzilla.mozilla.org/show_bug.cgi?id=1832195 - Issue Tracking, Permissions Required | |
CPE | cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* | |
First Time |
Mozilla firefox
Mozilla |
05 Jul 2023, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-05 10:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-37204
Mitre link : CVE-2023-37204
CVE.ORG link : CVE-2023-37204
JSON object : View
Products Affected
mozilla
- firefox
CWE