#CVE-2023-37201: Use-after-free in WebRTC certificate generation Reporter Irvan Kurniawan Impact high DescriptionĪn attacker could have triggered a use-after-free condition when creating a WebRTC connection over HTTPS. This could have led to malicious websites storing tracking data without permission. When Firefox is configured to block storage of all cookies, it was still possible to store data in localstorage by using an iframe with a source of 'about:blank'. #CVE-2023-3482: Block all cookies bypass for localstorage Reporter Martin Hostettler Impact moderate Description Mozilla Foundation Security Advisory 2023-22 Security Vulnerabilities fixed in Firefox 115 Announced JImpact high Products Firefox Fixed in
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |