Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Security Vulnerabilities fixed in Firefox for iOS 120

Related Vulnerabilities: CVE-2023-49060   CVE-2023-49061  

Source

Mozilla Foundation Security Advisory 2023-51

Security Vulnerabilities fixed in Firefox for iOS 120

Announced
November 21, 2023
Impact
high
Products
Firefox for iOS
Fixed in
  • Firefox for iOS 120

#CVE-2023-49060: Privilege escalation through <a [referrerpolicy]> in ReaderMode

Reporter
Muneaki Nishimura
Impact
high
Description

An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the referrerpolicy attribute.

References

#CVE-2023-49061: HTML injection in %READER-BYLINE% of ReaderMode

Reporter
Muneaki Nishimura
Impact
moderate
Description

An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information.

References

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started