CNVD-2024-12549 — Vulnetix

CNVD-2024-12549 PUBLISHED CVSS 6.099999904632568 MEDIUM

Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox存在安全绕过漏洞，攻击者可利用该漏洞模糊权限对话框。

Risk Scores

CVSS 3.1

6.099999904632568

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Products

Vendor	Product	Versions
Mozilla	Thunderbird	unspecified
Mozilla	Firefox	unspecified
Mozilla	Firefox ESR	unspecified

Exploit Intelligence

https://bugzilla.mozilla.org/show_bug.cgi?id=1833814 (circl)
https://www.mozilla.org/security/advisories/mfsa2024-05/ (circl)
https://www.mozilla.org/security/advisories/mfsa2024-06/ (circl)
https://www.mozilla.org/security/advisories/mfsa2024-07/ (circl)
https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html (circl)
https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html (circl)
CIRCL seen: CVE-2024-1549 (circl-sighting)
CIRCL seen: CVE-2024-1549 (circl-sighting)
CIRCL seen: CVE-2024-1549 (circl-sighting)

Timeline

Feb 20, 2024 CVE Published
Feb 20, 2024 PoC Published
Feb 21, 2024 PoC Published
Mar 1, 2024 CVE ID Reserved
Mar 8, 2024 PoC Published

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›