The MediaError message property should be consistent to avoid leaking information about cross-origin resources; however for a same-site cross-origin resource, the message could have leaked information enabling XS-Leaks attacks. This vulnerability affects Firefox < 102.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 102.0 (excluding) |
Firefox | Ubuntu | bionic | * |
Firefox | Ubuntu | focal | * |
Firefox | Ubuntu | impish | * |
Firefox | Ubuntu | upstream | * |