Lucene search
PRIOn knowledge basePRION:CVE-2023-4045HistoryAug 01, 2023 - 3:15 p.m.
Cross site scripting
2023-08-0115:15:00
PRIOn knowledge base
www.prio-n.com
8
cross site scripting
offscreen canvas
firefox
vulnerability
same-origin policy
Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 11.0 | |
| debian_linux | eq | 12.0 | |
| firefox | lt | 116.0 | |
| firefox_esr | ge | 115.0 | |
| firefox_esr | lt | 115.1 | |
| firefox_esr | ge | 102.0 | |
| firefox_esr | lt | 102.14 |
References
bugzilla.mozilla.org/show_bug.cgi?id=1833876
lists.debian.org/debian-lts-announce/2023/08/msg00008.html
lists.debian.org/debian-lts-announce/2023/08/msg00010.html
www.debian.org/security/2023/dsa-5464
www.debian.org/security/2023/dsa-5469
www.mozilla.org/security/advisories/mfsa2023-29/
www.mozilla.org/security/advisories/mfsa2023-30/
www.mozilla.org/security/advisories/mfsa2023-31/
Related
redhatcve
redhatcve
CVE-2023-4045
2023-08-02 07:51:32
nvd
nvd
CVE-2023-4045
2023-08-01 15:15:09
debiancve
debiancve
CVE-2023-4045
2023-08-01 15:15:09
ubuntucve
ubuntucve
CVE-2023-4045
2023-08-01 00:00:00
veracode
veracode
Information Disclosure
2023-08-06 12:05:41
cve
cve
CVE-2023-4045
2023-08-01 15:15:09
alpinelinux
alpinelinux
CVE-2023-4045
2023-08-01 15:15:09
cvelist
cvelist
CVE-2023-4045
2023-08-01 14:56:53
debian
debian
[SECURITY] [DSA 5469-1] thunderbird security update
2023-08-05 20:47:00
[SECURITY] [DLA 3521-1] thunderbird security update
2023-08-08 10:13:27
[SECURITY] [DSA 5464-1] firefox-esr security update
2023-08-03 17:27:01
nessus
nessus
Debian DSA-5469-1 : thunderbird - security update
2023-08-07 00:00:00
Amazon Linux 2 : firefox (ALASFIREFOX-2023-002)
2023-09-27 00:00:00
Debian DLA-3523-1 : firefox-esr - LTS security update
2023-08-09 00:00:00
osv
osv
thunderbird - security update
2023-08-08 00:00:00
firefox-esr - security update
2023-08-03 00:00:00
thunderbird - security update
2023-08-05 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5464-1)
2023-08-04 00:00:00
Debian: Security Advisory (DSA-5469-1)
2023-08-07 00:00:00
Debian: Security Advisory (DLA-3523-1)
2023-08-10 00:00:00
kaspersky
kaspersky
KLA51618 Multiple vulnerabilities in Mozilla Thunderbird
2023-08-02 00:00:00
KLA51574 Multiple vulnerabilities in Mozilla Firefox ESR
2023-08-01 00:00:00
KLA51620 Multiple vulnerabilities in Mozilla Thunderbird
2023-08-02 00:00:00
oraclelinux
oraclelinux
firefox security update
2023-08-04 00:00:00
firefox security update
2023-08-04 00:00:00
firefox security update
2023-08-06 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 102.14 — Mozilla
2023-08-02 00:00:00
Security Vulnerabilities fixed in Firefox ESR 102.14 — Mozilla
2023-08-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.1 — Mozilla
2023-08-02 00:00:00
redhat
redhat
(RHSA-2023:4468) Important: firefox security update
2023-08-03 13:32:38
(RHSA-2023:4460) Important: firefox security update
2023-08-03 12:29:10
(RHSA-2023:4461) Important: firefox security update
2023-08-03 12:32:03
rocky
rocky
firefox security update
2023-08-08 12:35:00
firefox security update
2023-08-08 12:34:07
thunderbird security update
2023-08-08 12:35:00
almalinux
almalinux
Important: firefox security update
2023-08-03 00:00:00
Important: firefox security update
2023-08-03 00:00:00
Important: thunderbird security update
2023-08-07 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2023-09-04 00:00:00
Firefox regressions
2023-08-21 00:00:00
Firefox regressions
2023-08-08 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2232
2023-09-12 11:49:20
Advisory ROSA-SA-2023-2233
2023-09-12 11:49:48
slackware
slackware
[slackware-security] mozilla-firefox
2023-08-04 20:52:54
redos
redos
ROS-20230908-07
2023-09-08 00:00:00
ROS-20230919-04
2023-09-19 00:00:00
mageia
mageia
Updated firefox/thunderbird packages fix security vulnerability
2023-09-25 01:16:18
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
ibm
ibm