CVE-2024-6608

CVSS v3.1 4.3 (Medium)

EPSS 0.05 % (21^th)

Affected Products 2

Advisories 6

NVD Status Analyzed

It was possible to move the cursor using pointerlock from an iframe. This allowed moving the cursor outside of the viewport and the Firefox window. This vulnerability affects Firefox < 128 and Thunderbird < 128.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: Mozilla Corporation
Published Date: 2024-07-09 15:15:12
(2 months ago)
Updated Date: 2024-08-29 18:34:20
(2 weeks ago)

Affected Products

Mozilla

Firefox
Thunderbird

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 128.0 version	cpe:2.3:a:mozilla:firefox		< 128.0
	Mozilla Thunderbird prior 128.0 version	cpe:2.3:a:mozilla:thunderbird		< 128.0