CVE-2024-5692
CVSS v3.1
6.5 (Medium)
EPSS
0.04 % (16th)
Advisories
9
NVD Status
Awaiting Analysis
On Windows 10, when using the 'Save As' functionality, an attacker could have tricked the browser into saving the file with a disallowed extension such as .url
by including an invalid character in the extension. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.
- CVE Status
- PUBLISHED
- NVD Status
- Awaiting Analysis
- CNA
- Mozilla Corporation
- Published Date
-
2024-06-11 13:15:50
(3 months ago) - Updated Date
-
2024-08-01 13:59:56
(6 weeks ago)
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...