Lucene search
Alpine Linux Development TeamALPINE:CVE-2024-9392HistoryOct 01, 2024 - 4:15 p.m.
CVE-2024-9392
2024-10-0116:15:10
Alpine Linux Development Team
security.alpinelinux.org
compromised process
cross-origin loading
unix
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.6
Confidence
Low
A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 128.3, and Thunderbird < 131.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | firefox | = 130.0.1-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | firefox | = 130.0.1-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | firefox-esr | = 115.15.0-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | thunderbird | = 128.2.2-r0 | UNKNOWN |
| Alpine | edge-community | noarch | firefox-esr | = 115.16.0-r0 | UNKNOWN |
| Alpine | edge-community | noarch | thunderbird | = 128.2.3-r0 | UNKNOWN |
Related
cve
cve
CVE-2024-9392
2024-10-01 16:15:10
debiancve
debiancve
CVE-2024-9392
2024-10-01 16:15:10
cvelist
cvelist
CVE-2024-9392
2024-10-01 15:13:18
vulnrichment
vulnrichment
CVE-2024-9392
2024-10-01 15:13:18
nvd
nvd
CVE-2024-9392
2024-10-01 16:15:10
nessus
nessus
Mozilla Firefox ESR < 115.16
2024-10-01 00:00:00
Mozilla Firefox ESR < 115.16
2024-10-01 00:00:00
Mozilla Firefox ESR < 128.3
2024-10-01 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.16 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 131 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 128.3 — Mozilla
2024-10-01 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.6
Confidence
Low
Related for ALPINE:CVE-2024-9392