4.3

CVE-2024-0742

It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an incorrect timestamp used to prevent input after page load. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaFirefox Version < 122.0
MozillaFirefox ESR Version < 115.7
MozillaThunderbird Version < 115.7
DebianDebian Linux Version10.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.6% 0.438
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 2.8 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0 4.3 2.8 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://lists.debian.org/debian-lts-announce/2024/01/msg00015.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2024/01/msg00022.html
Third Party Advisory
Mailing List
https://www.mozilla.org/security/advisories/mfsa2024-01/
Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-02/
Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-04/
Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=1867152
Issue Tracking
Permissions Required