A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.
This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 113.0 (excluding) |
Firefox_esr | Mozilla | * | 102.11 (excluding) |
Thunderbird | Mozilla | * | 102.11 (excluding) |