CVE-2023-5729

Summary

A malicious web site can enter fullscreen mode while simultaneously triggering a WebAuthn prompt. This could have obscured the fullscreen notification and could have been leveraged in a spoofing attack. This vulnerability affects Firefox < 119.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 119affected

Weaknesses

  • Fullscreen notification dialog could have been obscured by WebAuthn prompts

ADP Enrichment

CVE Program Container

Additional References

References