Vulnerabilities > CVE-2023-25741 - Unspecified vulnerability in Mozilla Firefox
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
When dragging and dropping an image cross-origin, the image's size could potentially be leaked. This behavior was shipped in 109 and caused web compatibility problems as well as this security concern, so the behavior was disabled until further review. This vulnerability affects Firefox < 110.
Vulnerable Configurations
References
- https://bugzilla.mozilla.org/show_bug.cgi?id=1437126
- https://bugzilla.mozilla.org/show_bug.cgi?id=1437126
- https://bugzilla.mozilla.org/show_bug.cgi?id=1812611
- https://bugzilla.mozilla.org/show_bug.cgi?id=1812611
- https://bugzilla.mozilla.org/show_bug.cgi?id=1813376
- https://bugzilla.mozilla.org/show_bug.cgi?id=1813376
- https://www.mozilla.org/security/advisories/mfsa2023-05/
- https://www.mozilla.org/security/advisories/mfsa2023-05/