1. Home
  2. Vulnerabilities
  3. CVE-2024-5693

CVE-2024-5693

CVSS v3.1 6.1 (Medium)
61% Progress
EPSS 0.04 % (11th)
0.04% Progress
Advisories 34
NVD Status Awaiting Analysis
Info CVSS EPSS CAPEC References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.

Weaknesses
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
CVE Status
PUBLISHED
NVD Status
Awaiting Analysis
CNA
Mozilla Corporation
Published Date
2024-06-11 13:15:50
(3 months ago)
Updated Date
2024-07-03 02:09:11
(2 months ago)