CVE-2024-4769
CVSS v3.1
5.9 (Medium)
EPSS
0.04 % (11th)
Advisories
32
NVD Status
Awaiting Analysis
When importing resources using Web Workers, error messages would distinguish the difference between application/javascript
responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.
Weaknesses
- CWE-351
- Insufficient Type Distinction
- CVE Status
- PUBLISHED
- NVD Status
- Awaiting Analysis
- CNA
- Mozilla Corporation
- Published Date
-
2024-05-14 18:15:14
(4 months ago) - Updated Date
-
2024-07-03 02:08:05
(2 months ago)
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...