Lucene search
MozillaCVELIST:CVE-2024-8382HistorySep 03, 2024 - 12:32 p.m.
CVE-2024-8382
2024-09-0312:32:18
mozilla
www.cve.org
4
browser event interfaces
web content exposure
eventhandler listener callbacks
privileged access
dev tools
firefox vulnerability
esr vulnerability
EPSS
0.001
Percentile
35.2%
Internal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried to use those interfaces would not be able to use them with elevated privileges, but their presence would indicate certain browser features had been used, such as when a user opened the Dev Tools console. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "130",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "128.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "115.15",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "128.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "115.15",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
redhatcve
redhatcve
CVE-2024-8382
2024-09-03 15:43:07
osv
osv
CVE-2024-8382
2024-09-03 13:15:05
thunderbird - security update
2024-09-09 00:00:00
firefox-esr - security update
2024-09-04 00:00:00
alpinelinux
alpinelinux
CVE-2024-8382
2024-09-03 13:15:05
nvd
nvd
CVE-2024-8382
2024-09-03 13:15:05
debiancve
debiancve
CVE-2024-8382
2024-09-03 13:15:05
cve
cve
CVE-2024-8382
2024-09-03 13:15:05
vulnrichment
vulnrichment
CVE-2024-8382
2024-09-03 12:32:18
nessus
nessus
Fedora 39 : thunderbird (2024-e77ad5f585)
2024-09-14 00:00:00
Mozilla Thunderbird < 115.15
2024-09-06 00:00:00
Mozilla Thunderbird < 115.15
2024-09-06 00:00:00
kaspersky
kaspersky
KLA73183 Multiple vulnerabilities in Mozilla Thunderbird
2024-09-03 00:00:00
KLA73123 Multiple vulnerabilities in Mozilla Firefox ESR
2024-09-03 00:00:00
KLA73124 Multiple vulnerabilities in Mozilla Firefox ESR
2024-09-03 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 115.15 — Mozilla
2024-09-03 00:00:00
Security Vulnerabilities fixed in Firefox ESR 115.15 — Mozilla
2024-09-03 00:00:00
Security Vulnerabilities fixed in Thunderbird 128.2 — Mozilla
2024-09-03 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3869-1)
2024-09-05 00:00:00
Debian: Security Advisory (DSA-5767-1)
2024-09-09 00:00:00
Debian: Security Advisory (DLA-3882-1)
2024-09-09 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2024-09-03 21:15:31
redhat
redhat
(RHSA-2024:6723) Important: thunderbird security update
2024-09-17 11:09:33
(RHSA-2024:6720) Important: thunderbird security update
2024-09-17 11:09:14
(RHSA-2024:6682) Important: firefox security update
2024-09-16 11:09:22
oraclelinux
oraclelinux
firefox security update
2024-09-18 00:00:00
thunderbird security update
2024-09-18 00:00:00
firefox security update
2024-09-18 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2024-09-05 00:00:00
Thunderbird vulnerabilities
2024-09-09 00:00:00
rocky
rocky
firefox security update
2024-09-17 00:54:54
thunderbird security update
2024-09-17 00:54:54
freebsd
freebsd
firefox -- multiple vulnerabilities
2024-09-03 00:00:00