0.001 Low
EPSS
Percentile
48.6%
firefox-esr is vulnerable to Information Disclosure. The vulnerability that exists when dragging a URL from a cross-origin iframe that was removed during the drag could have led to user confusion and website spoofing attacks.
bugzilla.mozilla.org/show_bug.cgi?id=1809122
security-tracker.debian.org/tracker/CVE-2023-28164
www.mozilla.org/security/advisories/mfsa2023-09/
www.mozilla.org/security/advisories/mfsa2023-10/
www.mozilla.org/security/advisories/mfsa2023-11/