CVE-2024-5698

CVSS v3.1 6.1 (Medium)

EPSS 0.05 % (18^th)

Affected Products 1

Advisories 4

NVD Status Analyzed

By manipulating the fullscreen feature while opening a data-list, an attacker could have overlaid a text box over the address bar. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 127.

Weaknesses

CWE-1021: Improper Restriction of Rendered UI Layers or Frames

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: Mozilla Corporation
Published Date: 2024-06-11 13:15:51
(3 months ago)
Updated Date: 2024-08-23 15:56:02
(3 weeks ago)

Affected Products

Mozilla

Firefox

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 127 version	cpe:2.3:a:mozilla:firefox		< 127