1. Home
  2. Vulnerabilities
  3. CVE-2024-4769

CVE-2024-4769

CVSS v3.1 5.9 (Medium)
59% Progress
EPSS 0.04 % (11th)
0.04% Progress
Advisories 32
NVD Status Awaiting Analysis
Info CVSS EPSS References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

When importing resources using Web Workers, error messages would distinguish the difference between application/javascript responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.

Weaknesses
CWE-351
Insufficient Type Distinction
CVE Status
PUBLISHED
NVD Status
Awaiting Analysis
CNA
Mozilla Corporation
Published Date
2024-05-14 18:15:14
(4 months ago)
Updated Date
2024-07-03 02:08:05
(2 months ago)