An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute. This vulnerability affects Firefox for iOS < 120.
References
Link | Resource |
---|---|
https://bugzilla.mozilla.org/show_bug.cgi?id=1861405 | Issue Tracking Not Applicable |
https://www.mozilla.org/security/advisories/mfsa2023-51/ | Release Notes Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2023-11-21T14:28:55.428Z
Updated: 2023-11-21T14:28:55.428Z
Reserved: 2023-11-20T15:00:28.168Z
Link: CVE-2023-49060
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-21T15:15:07.560
Modified: 2023-11-30T14:29:10.127
Link: CVE-2023-49060
JSON object: View
Redhat Information
No data.
CWE