CVE-2023-4045

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Aug 1, 2023

Updated: Aug 9, 2023

CWE ID 346

Summary

CVE-2023-4045 is a vulnerability in Firefox and its Enterprise versions, affecting those below 116, 102.14, and 115.1, respectively. This issue stems from Offscreen Canvas, where cross-origin tainting was not adequately monitored. As a result, an attacker could potentially bypass the same-origin policy and access image data from another site, raising significant privacy and security concerns.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sL_xL0
https://www.cve.org/CVERecord?id=CVE-2023-4045
https://nvd.nist.gov/vuln/detail/CVE-2023-4045

Back to Vulnerability Database

CVE-2023-4045

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations