CVE-2023-4051

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 1, 2023

Updated: Sep 11, 2023

Summary

CVE-2023-4051 is a vulnerability that allows websites to display full-screen notifications that are partially obscured by the file open dialog in Firefox versions below 116, Firefox ESR below 115.2, and Thunderbird below 115.2. This issue can lead to user confusion and potential spoofing attacks, as users may be unable to distinguish between legitimate and malicious notifications. Websites could exploit this vulnerability to display misleading or deceptive content, increasing the risk of security breaches or data theft. Users are advised to upgrade their browsers to the latest versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sL_tDP
https://www.cve.org/CVERecord?id=CVE-2023-4051
https://nvd.nist.gov/vuln/detail/CVE-2023-4051

Back to Vulnerability Database

CVE-2023-4051

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations