N/A

Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.

N/A

N/A

Mozilla Firefox 访问控制错误漏洞

Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 116 版本存在安全漏洞，该漏洞源于 Offscreen Canvas 无法正确跟踪跨源污染，这可能被用来从另一个站点访问图像数据，从而违反了同源策略。

N/A

N/A