![]() #CVE-2023-37202: Potential use-after-free from compartment mismatch in SpiderMonkey Reporter zx Impact high DescriptionĬross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment resulting in a use-after-free. #CVE-2023-37201: Use-after-free in WebRTC certificate generation Reporter Irvan Kurniawan Impact high DescriptionĪn attacker could have triggered a use-after-free condition when creating a WebRTC connection over HTTPS. This could have led to malicious websites storing tracking data without permission. ![]() ![]() When Firefox is configured to block storage of all cookies, it was still possible to store data in localstorage by using an iframe with a source of 'about:blank'. #CVE-2023-3482: Block all cookies bypass for localstorage Reporter Martin Hostettler Impact moderate Description ![]() Mozilla Foundation Security Advisory 2023-22 Security Vulnerabilities fixed in Firefox 115 Announced JImpact high Products Firefox Fixed in ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |