Описание
An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme. This vulnerability affects Firefox for iOS < 123.
Ссылки
- Issue Tracking
- Vendor Advisory
- Issue Tracking
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 123.0 (исключая)
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:iphone_os:*:*
EPSS
Процентиль: 46%
0.00261
Низкий
7.8 High
CVSS3
Дефекты
CWE-83
Связанные уязвимости
CVSS3: 7.8
debian
больше 1 года назад
An attacker could have executed unauthorized scripts on top origin sit ...
CVSS3: 7.8
github
больше 1 года назад
An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme. This vulnerability affects Firefox for iOS < 123.
EPSS
Процентиль: 46%
0.00261
Низкий
7.8 High
CVSS3
Дефекты
CWE-83