CVE-2024-5693
CVSS v3.1
6.1 (Medium)
EPSS
0.04 % (11th)
Advisories
34
NVD Status
Awaiting Analysis
Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.
Weaknesses
- CWE-829
- Inclusion of Functionality from Untrusted Control Sphere
- CVE Status
- PUBLISHED
- NVD Status
- Awaiting Analysis
- CNA
- Mozilla Corporation
- Published Date
-
2024-06-11 13:15:50
(3 months ago) - Updated Date
-
2024-07-03 02:09:11
(2 months ago)
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...