MozillaCVELIST:CVE-2024-0747

HistoryJan 23, 2024 - 1:48 p.m.

CVE-2024-0747

2024-01-2313:48:16

mozilla

raw.githubusercontent.com

parent page

iframe

unsafe-inline

content security policy

firefox

thunderbird

cve-2024-0747

5.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

22.3%

JSON

When a parent page loaded a child in an iframe with unsafe-inline, the parent Content Security Policy could have overridden the child Content Security Policy. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.

prion

Design/Logic Flaw

2024-01-23 14:15:00

alpinelinux

CVE-2024-0747

2024-01-23 14:15:38

cnvd

Security Bypass Vulnerability in Multiple Mozilla Products (CNVD-2024-10434)

2024-01-26 00:00:00

cve

CVE-2024-0747

2024-01-23 14:15:38

veracode

Protection Mechanism Failure

2024-02-03 03:03:59

ubuntucve

CVE-2024-0747

2024-01-23 00:00:00

debiancve

CVE-2024-0747

2024-01-23 14:15:38

redhatcve

CVE-2024-0747

2024-01-25 17:21:17

nessus

Mozilla Firefox ESR < 115.7

2024-01-23 00:00:00

Mozilla Firefox ESR < 115.7

2024-01-23 00:00:00

RHEL 7 : thunderbird (RHSA-2024:0601)

2024-01-30 00:00:00

openvas

Mozilla Firefox ESR Security Advisories (MFSA2024-01, MFSA2024-04) - Mac OS X

2024-01-24 00:00:00

Mozilla Thunderbird Security Advisories (MFSA2024-01, MFSA2024-04) - Windows

2024-01-24 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2024-01, MFSA2024-04) - Windows

2024-01-24 00:00:00

mageia

Updated thunderbird packages fix security vulnerabilities

2024-02-04 05:49:27

Updated nss and firefox packages fix some security vulnerabilities

2024-02-04 05:49:27

slackware

[slackware-security] mozilla-firefox

2024-01-23 20:15:17

[slackware-security] mozilla-thunderbird

2024-01-24 05:03:37

oraclelinux

thunderbird security update

2024-01-30 00:00:00

firefox security update

2024-01-30 00:00:00

thunderbird security update

2024-01-31 00:00:00

redhat

(RHSA-2024:0618) Important: firefox security update

2024-01-30 15:25:59

(RHSA-2024:0619) Important: thunderbird security update

2024-01-30 15:26:00

(RHSA-2024:0559) Important: firefox security update

2024-01-30 10:45:00

rocky

thunderbird security update

2024-02-12 20:17:26

firefox security update

2024-02-12 20:17:26

mozilla

Security Vulnerabilities fixed in Firefox ESR 115.7 — Mozilla

2024-01-23 00:00:00

Security Vulnerabilities fixed in Thunderbird 115.7 — Mozilla

2024-01-23 00:00:00

Security Vulnerabilities fixed in Firefox 122 — Mozilla

2024-01-23 00:00:00

osv

firefox-esr - security update

2024-01-31 00:00:00

Important: firefox security update

2024-01-30 00:00:00

Important: thunderbird security update

2024-01-30 00:00:00

almalinux

Important: thunderbird security update

2024-01-30 00:00:00

Important: firefox security update

2024-01-30 00:00:00

Important: firefox security update

2024-01-30 00:00:00

kaspersky

KLA63225 Multiple vulnerabilities in Mozilla Thunderbird

2024-01-23 00:00:00

KLA63224 Multiple vulnerabilities in Mozilla Firefox ESR

2024-01-23 00:00:00

KLA63223 Multiple vulnerabilities in Mozilla Firefox

2024-01-23 00:00:00

debian

[SECURITY] [DSA 5605-1] thunderbird security update

2024-01-24 18:53:24

[SECURITY] [DLA 3720-1] thunderbird security update

2024-01-25 10:50:22

[SECURITY] [DSA 5606-1] firefox-esr security update

2024-01-24 19:18:38

amazon

Medium: thunderbird

2024-02-01 19:57:00

centos

firefox, thunderbird security update

2024-02-05 19:24:42

ubuntu

Firefox vulnerabilities

2024-01-29 00:00:00

Firefox regressions

2024-02-07 00:00:00

Thunderbird vulnerabilities

2024-03-04 00:00:00

gentoo

Mozilla Firefox: Multiple Vulnerabilities

2024-02-19 00:00:00

Mozilla Thunderbird: Multiple Vulnerabilities

2024-02-19 00:00:00

CVE-2024-0747

Related