Vulnerabilities > CVE-2023-28160 - Unspecified vulnerability in Mozilla Firefox

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
mozilla

Summary

When following a redirect to a publicly accessible web extension file, the URL may have been translated to the actual local path, leaking potentially sensitive information. This vulnerability affects Firefox < 111.

Vulnerable Configurations

Part Description Count
Application
Mozilla
897