CVE-2023-6869

Summary

A &amp;lt;dialog&gt; element could have been manipulated to paint content outside of a sandboxed iframe. This could allow untrusted content to display under the guise of trusted content. This vulnerability affects Firefox < 121.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 121affected

Weaknesses

  • Content can paint outside of sandboxed iframe

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References