Vulnerabilities > CVE-2024-1547

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
mozilla
debian
NVD
Published: 2024-02-20
Updated: 2024-12-10

Summary

Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website (with the victim website's URL shown). This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

Vulnerable Configurations

Part Description Count
Application
Mozilla
827
OS
Debian
1

References