AI Score
Confidence
High
EPSS
Percentile
21.3%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
It was possible to move the cursor using pointerlock from an iframe. This allowed moving the cursor outside of the viewport and the Firefox window. This vulnerability affects Firefox < 128 and Thunderbird < 128.