CVE-2023-25741

CVSS v3.1 6.5 (Medium)

EPSS 0.10 % (42^th)

Affected Products 1

Advisories 3

When dragging and dropping an image cross-origin, the image's size could potentially be leaked. This behavior was shipped in 109 and caused web compatibility problems as well as this security concern, so the behavior was disabled until further review. This vulnerability affects Firefox < 110.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2023-06-02 17:15:11
(15 months ago)
Updated Date: 2023-06-08 16:36:10
(15 months ago)

Affected Products

Mozilla

Firefox

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 110.0 version	cpe:2.3:a:mozilla:firefox		< 110.0