VDB

CISA-2023-3482

CISA-2023-3482 PUBLISHED

Reported by mozilla · Published July 5, 2023

When Firefox is configured to block storage of all cookies, it was still possible to store data in localstorage by using an iframe with a source of 'about:blank'. This could have led to malicious websites storing tracking data without permission. This vulnerability affects Firefox < 115.

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefoxunspecified, unspecified

Timeline

  • Jul 5, 2023 CVE Published
  • Nov 25, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›