First published: Tue Nov 21 2023(Updated: )
An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the referrerpolicy attribute.
An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute. This vulnerability affects Firefox for iOS < 120.
|Affected Software||Affected Version||How to fix|
(Appears in the following advisories)
CVE-2023-49060 is a vulnerability in Firefox for iOS that could allow an attacker to access internal pages or data by extracting a security key from ReaderMode through the referrerpolicy attribute.
CVE-2023-49060 affects Firefox for iOS versions prior to 120.
CVE-2023-49060 has a severity rating of high.
To fix CVE-2023-49060, users should update their Firefox for iOS to version 120 or higher.
More information about CVE-2023-49060 can be found in the Mozilla Security Advisory MFSA2023-51.