CVE-2024-6610

CVSS v3.1 4.3 (Medium)

EPSS 0.05 % (21^th)

Affected Products 2

Advisories 6

NVD Status Analyzed

Form validation popups could capture escape key presses. Therefore, spamming form validation messages could be used to prevent users from exiting full-screen mode. This vulnerability affects Firefox < 128 and Thunderbird < 128.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: Mozilla Corporation
Published Date: 2024-07-09 15:15:12
(2 months ago)
Updated Date: 2024-08-29 18:22:37
(2 weeks ago)

Affected Products

Mozilla

Firefox
Thunderbird

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 128.0 version	cpe:2.3:a:mozilla:firefox		< 128.0
	Mozilla Thunderbird prior 128.0 version	cpe:2.3:a:mozilla:thunderbird		< 128.0

Configuration #2

		CPE23	From	Up To
	Mozilla Thunderbird prior 128.0 version	cpe:2.3:a:mozilla:thunderbird		< 128.0