CVE-2024-5691
CVSS v3.1
4.7 (Medium)
EPSS
0.05 % (22th)
Affected Products
3
Advisories
33
NVD Status
Analyzed
By tricking the browser with a X-Frame-Options
header, a sandboxed iframe could have presented a button that, if clicked by a user, would bypass restrictions to open a new window. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.
Weaknesses
- CVE Status
- PUBLISHED
- NVD Status
- Analyzed
- CNA
- Mozilla Corporation
- Published Date
-
2024-06-11 13:15:50
(3 months ago) - Updated Date
-
2024-08-16 14:44:05
(4 weeks ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...