cvedb.io
CVE-2023-25741
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2023-06-02T17:15:11.537 · Last modified 2026-06-17T05:41:51.767

Summary

When dragging and dropping an image cross-origin, the image's size could potentially be leaked. This behavior was shipped in 109 and caused web compatibility problems as well as this security concern, so the behavior was disabled until further review. This vulnerability affects Firefox < 110.

Affected products

mozilla — firefox

Does this affect you?

Add your gear to cvedb and we'll alert you only when mozilla ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.