CVE-2023-6210
CVE-2023-6210
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
21 Nov 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
When an https: web page created a pop-up from a "javascript:" URL, that pop-up was incorrectly allowed to load blockable content such as iframes from insecure http: URLs This vulnerability affects Firefox < 120.
Affected products
Mozilla · FirefoxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →