Cross-Origin Resource Redirect Disclosure in Firefox < 100

Cross-Origin Resource Redirect Disclosure in Firefox < 100

CVE-2022-29915 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

The Performance API did not properly hide the fact whether a request cross-origin resource has observed redirects. This vulnerability affects Firefox < 100.

Learn more about our Api Penetration Testing.