CVE-2023-49060 (CRITICAL)

Vendor	Product	Version range	Fixed in
debian	firefox	—	—
mozilla	firefox	< 120.0	120.0
mozilla	firefox	—	—
mozilla	firefox_for_ios	>= unspecified < 120	120

GHSA

GHSA-2pmg-xgx9-g8w8: An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute

ghsa_unreviewed·2023-11-21

CVE-2023-49060 [CRITICAL] GHSA-2pmg-xgx9-g8w8: An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute. This vulnerability affects Firefox for iOS < 120.

Debian

CVE-2023-49060: firefox - An attacker could have accessed internal pages or data by ex-filtrating a securi...

vendor_debian·2023·CVSS 9.8

CVE-2023-49060 [CRITICAL] CVE-2023-49060: firefox - An attacker could have accessed internal pages or data by ex-filtrating a securi... An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute. This vulnerability affects Firefox for iOS < 120. Scope: local sid: resolved

Mozilla

Mozilla Foundation Security Advisory 2023-51: CVE-2023-49060

vendor_mozilla·CVSS 9.8

CVE-2023-49060 [CRITICAL] Mozilla Foundation Security Advisory 2023-51: CVE-2023-49060 Mozilla Foundation Security Advisory 2023-51 CVE: CVE-2023-49060 Product: Firefox for iOS Impact: moderate Fixed in: Firefox for iOS 120

CVE-2023-49060: An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute. This vulnerability…

Affected