1. Home
  2. Vulnerabilities
  3. CVE-2024-29944

CVE-2024-29944

CVSS v3.1 8.4 (High)
84% Progress
EPSS 0.04 % (17th)
0.04% Progress
Advisories 18
NVD Status Awaiting Analysis
Info CVSS EPSS References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does not affect mobile versions of Firefox. This vulnerability affects Firefox < 124.0.1 and Firefox ESR < 115.9.1.

CVE Status
PUBLISHED
NVD Status
Awaiting Analysis
CNA
Mozilla Corporation
Published Date
2024-03-22 13:15:07
(5 months ago)
Updated Date
2024-08-27 18:35:09
(2 weeks ago)