CVE-2023-4051

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 1, 2023
Updated: Sep 11, 2023

Summary

CVE-2023-4051 is a vulnerability that allows websites to display full-screen notifications that are partially obscured by the file open dialog in Firefox versions below 116, Firefox ESR below 115.2, and Thunderbird below 115.2. This issue can lead to user confusion and potential spoofing attacks, as users may be unable to distinguish between legitimate and malicious notifications. Websites could exploit this vulnerability to display misleading or deceptive content, increasing the risk of security breaches or data theft. Users are advised to upgrade their browsers to the latest versions to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share