[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

246852

 
 

909

 
 

194149

 
 

282

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2024-29944Date: (C)2024-03-23   (M)2024-04-12


An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does not affect mobile versions of Firefox. This vulnerability affects Firefox < 124.0.1 and Firefox ESR < 115.9.1.

Reference:
https://bugzilla.mozilla.org/show_bug.cgi?id=1886852
https://lists.debian.org/debian-lts-announce/2024/03/msg00028.html
https://www.mozilla.org/security/advisories/mfsa2024-15/
https://www.mozilla.org/security/advisories/mfsa2024-16/

OVAL    13
oval:org.secpod.oval:def:98602
oval:org.secpod.oval:def:98606
oval:org.secpod.oval:def:98607
oval:org.secpod.oval:def:98608
...
XCCDF    1

© SecPod Technologies