A mishandled security check when... CVE-2023-23602
-
AV
AC
AU
C
I
A
发布:
2023-06-02
修订:
2023-06-08
A mishandled security check when creating a WebSocket in a WebWorker caused the Content Security Policy connect-src header to be ignored. This could lead to connections to restricted origins from inside WebWorkers. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.
漏洞利用/PoC
当前有20条漏洞利用/PoC
受影响的平台与产品
当前有3条受影响产品信息
