vulnerability
Red Hat: CVE-2019-17014: Mozilla: Dragging and dropping a cross-origin resource, incorrectly loaded as an image, could result in information disclosure
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:P/I:N/A:N) | Jan 8, 2020 | Jul 9, 2025 | Jul 9, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
Jan 8, 2020
Added
Jul 9, 2025
Modified
Jul 9, 2025
Description
If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak. This vulnerability affects Firefox < 71.
Solution
no-fix-redhat-rpm-package
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.