CVE-2023-4055
CVSS v3.1
7.5 (High)
EPSS
0.22 % (60th)
Affected Products
3
Advisories
36
When the number of cookies per domain was exceeded in document.cookie
, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies missing. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.
Weaknesses
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2023-08-01 16:15:09
(13 months ago) - Updated Date
-
2023-08-09 21:15:11
(13 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...