CVE-2024-0742

CVSS v3.1 4.3 (Medium)

EPSS 0.05 % (22^th)

Affected Products 4

Advisories 35

It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an incorrect timestamp used to prevent input after page load. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2024-01-23 14:15:38
(7 months ago)
Updated Date: 2024-02-02 17:19:23
(7 months ago)

Affected Products

Debian

Debian Linux

Mozilla

Firefox
Firefox Esr
Thunderbird

Configuration #1

	CPE23	Up To
Mozilla Firefox prior 122.0 version	cpe:2.3:a:mozilla:firefox	< 122.0
Mozilla Firefox Esr prior 115.7 version	cpe:2.3:a:mozilla:firefox_esr	< 115.7
Mozilla Thunderbird prior 115.7 version	cpe:2.3:a:mozilla:thunderbird	< 115.7

Configuration #2

		CPE23	From	Up To
	Debian Linux 10.0	cpe:2.3:o:debian:debian_linux:10.0