Headline
CVE-2023-5758: Security Vulnerabilities fixed in Firefox for iOS 119
When opening a page in reader mode, the redirect URL could have caused attacker-controlled script to execute in a reflected Cross-Site Scripting (XSS) attack. This vulnerability affects Firefox for iOS < 119.
Mozilla Foundation Security Advisory 2023-48
Announced
October 24, 2023
Impact
high
Products
Firefox for iOS
Fixed in
- Firefox for iOS 119
#CVE-2023-5758: Cross-Site Scripting (XSS) in reader mode
Reporter
Irwan
Impact
high
Description
When opening a page in reader mode, the redirect URL could have caused attacker-controlled script to execute in a reflected Cross-Site Scripting (XSS) attack.
References
- Bug 1850019
Related news
Gentoo Linux Security Advisory 202401-10 - Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could lead to remote code execution. Versions greater than or equal to 115.6.0:esr are affected.