CVE-2023-25730

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jun 2, 2023

Updated: Jan 10, 2025

CWE ID 1021

Summary

CVE-2023-25730 is a vulnerability affecting Firefox version 109 and below, Thunderbird version 102.8 and below, and Firefox ESR version 102.8 and below. Maliciously crafted web content can exploit this issue by invoking the <code>requestFullscreen</code> function followed by thread blocking, forcing the browser into fullscreen mode indefinitely. This unwanted behavior could lead to user confusion or provide an opportunity for spoofing attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/qACO3N
https://www.cve.org/CVERecord?id=CVE-2023-25730
https://nvd.nist.gov/vuln/detail/CVE-2023-25730

Back to Vulnerability Database

CVE-2023-25730

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations