CVE-2023-37207
CVSS v3.1
6.5 (Medium)
EPSS
0.17 % (54th)
Affected Products
4
Advisories
34
A website could have obscured the fullscreen notification by using a URL with a scheme handled by an external program, such as a mailto URL. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 115, Firefox ESR < 102.13, and Thunderbird < 102.13.
Weaknesses
- CWE-470
- Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2023-07-05 09:15:09
(14 months ago) - Updated Date
-
2023-07-12 10:15:10
(14 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...