Lucene search
MozillaCVELIST:CVE-2024-5687HistoryJun 11, 2024 - 12:40 p.m.
CVE-2024-5687
2024-06-1112:40:16
mozilla
www.cve.org
12
cve-2024-5687
specific sequence
triggering principal
security checks
browser
headers
remote websites
firefox
android
vulnerability
version 127
EPSS
0
Percentile
9.0%
If a specific sequence of actions is performed when opening a new tab, the triggering principal associated with the new tab may have been incorrect. The triggering principal is used to calculate many values, including the Referer and Sec-* headers, meaning there is the potential for incorrect security checks within the browser in addition to incorrect or misleading information sent to remote websites.
This bug only affects Firefox for Android. Other versions of Firefox are unaffected. This vulnerability affects Firefox < 127.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "127",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-5687
2024-06-11 12:40:16
cve
cve
CVE-2024-5687
2024-06-11 13:15:50
alpinelinux
alpinelinux
CVE-2024-5687
2024-06-11 13:15:50
osv
osv
CGA-2mm3-g74m-m7gv
2024-07-15 21:48:48
MozillaFirefox-127.0-1.1 on GA media
2024-06-15 00:00:00
nvd
nvd
CVE-2024-5687
2024-06-11 13:15:50
ubuntucve
ubuntucve
CVE-2024-5687
2024-06-11 00:00:00
debiancve
debiancve
CVE-2024-5687
2024-06-11 13:15:50
wolfi
wolfi
CVE-2024-5687 vulnerabilities
2024-09-28 21:12:41
kaspersky
kaspersky
KLA68921 Multiple vulnerabilities in Mozilla Firefox
2024-06-11 00:00:00
nessus
nessus
Fedora 40 : firefox (2024-4a22a9cd11)
2024-06-12 00:00:00
Mozilla Firefox < 127.0
2024-06-11 00:00:00
Mozilla Firefox < 127.0
2024-06-11 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 127 — Mozilla
2024-06-11 00:00:00