CVE-2023-49061
published 2023-11-21CVE-2023-49061: An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information. This vulnerability affects Firefox for iOS < 120.
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information. This vulnerability affects Firefox for iOS < 120.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | — | — |
| mozilla | firefox | < 120.0 | 120.0 |
| mozilla | firefox | — | — |
| mozilla | firefox_for_ios | >= unspecified < 120 | 120 |
Debian
CVE-2023-49061: firefox - An attacker could have performed HTML template injection via Reader Mode and exf...
vendor_debian·2023·CVSS 6.1
CVE-2023-49061 [MEDIUM] CVE-2023-49061: firefox - An attacker could have performed HTML template injection via Reader Mode and exf...
An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information. This vulnerability affects Firefox for iOS < 120.
Scope: local
sid: resolved
Mozilla
Mozilla Foundation Security Advisory 2023-51: CVE-2023-49061
vendor_mozilla·CVSS 6.1
CVE-2023-49061 [MEDIUM] Mozilla Foundation Security Advisory 2023-51: CVE-2023-49061
Mozilla Foundation Security Advisory 2023-51
CVE: CVE-2023-49061
Product: Firefox for iOS
Impact: moderate
Fixed in: Firefox for iOS 120
GHSA
GHSA-c6mg-xwvh-76jx: An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information
ghsa_unreviewed·2023-11-21
CVE-2023-49061 [MEDIUM] CWE-601 GHSA-c6mg-xwvh-76jx: An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information
An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information. This vulnerability affects Firefox for iOS < 120.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-11-21
Published