Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.
Metrics
Affected Vendors & Products
References
History
Mon, 06 Jan 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:mozilla:firefox:-:*:*:*:*:*:*:* | |
Metrics |
ssvc
|
Mon, 21 Oct 2024 19:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | ||
Vendors & Products |
Mozilla firefox Esr
|

Status: PUBLISHED
Assigner: mozilla
Published: 2023-08-01T14:56:53.933Z
Updated: 2025-01-06T17:26:27.715Z
Reserved: 2023-08-01T14:55:59.302Z
Link: CVE-2023-4045

Updated: 2024-08-02T07:17:12.147Z

Status : Modified
Published: 2023-08-01T15:15:09.783
Modified: 2024-11-21T08:34:17.347
Link: CVE-2023-4045
