CVE-2023-29540 in Firefoxinfo

Summary

by MITRE • 06/02/2023

Using a redirect embedded into sourceMappingUrls could allow for navigation to external protocol links in sandboxed iframes without allow-top-navigation-to-custom-protocols. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservation

04/07/2023

Disclosure

06/02/2023

Moderation

accepted

Entry

VDB-225994

CPE

ready

CWE

CWE-601 (confirmed)

CVSS

6.3 (VulDB)

EPSS

0.00315

KEV

Activities

very low

Sector

Hospital, Police, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-29540
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-29540
CVE Details	https://www.cvedetails.com/cve/CVE-2023-29540/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!