CVE-2023-25728Observable Discrepancy in Mozilla Firefox

CWE-203Observable DiscrepancyCWE-1021UI Misrepresentation / Clickjacking15 documents8 sources
Severity
6.5MEDIUMNVD
OSV8.8
EPSS
0.2%
top 58.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla FirefoxMozilla Firefox ESRMozilla Thunderbird
Timeline
PublishedJun 2

Description

The Content-Security-Policy-Report-Only header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe triggers a redirect. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages9 packages

CVEListV5mozilla/firefoxunspecified110
NVDmozilla/firefox< 110.0
CVEListV5mozilla/firefox_esrunspecified102.8
NVDmozilla/firefox_esr< 102.8
Ubuntumozilla/firefox< 110.0+build3-0ubuntu0.18.04.1+3

🔴Vulnerability Details

6
OSV
CVE-2023-25728: The Content-Security-Policy-Report-Only header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe trigg2023-06-02
GHSA
GHSA-5pj8-c4h5-h95p: The Content-Security-Policy-Report-Only header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe trigg2023-06-02
CVEList
CVE-2023-25728: The Content-Security-Policy-Report-Only header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe trigg2023-06-02
OSV
thunderbird vulnerabilities2023-03-13
OSV
firefox regressions2023-03-01

📋Vendor Advisories

8
Ubuntu
Thunderbird vulnerabilities2023-03-13
Ubuntu
Firefox regressions2023-03-01
Ubuntu
Firefox vulnerabilities2023-02-20
Red Hat
Mozilla: Content security policy leak in violation reports using iframes2023-02-14
Debian
CVE-2023-25728: firefox - The <code>Content-Security-Policy-Report-Only</code> header could allow an attac...2023
CVE-2023-25728 — Observable Discrepancy in Mozilla | cvebase