Lucene search
MozillaCVELIST:CVE-2024-9397HistoryOct 01, 2024 - 3:13 p.m.
CVE-2024-9397
2024-10-0115:13:20
mozilla
www.cve.org
vulnerability
directory upload
clickjacking
firefox
thunderbird
A missing delay in directory upload UI could have made it possible for an attacker to trick a user into granting permission via clickjacking. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and Thunderbird < 131.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "131",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "128.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "128.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "131",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
debiancve
debiancve
CVE-2024-9397
2024-10-01 16:15:10
vulnrichment
vulnrichment
CVE-2024-9397
2024-10-01 15:13:20
nvd
nvd
CVE-2024-9397
2024-10-01 16:15:10
cve
cve
CVE-2024-9397
2024-10-01 16:15:10
alpinelinux
alpinelinux
CVE-2024-9397
2024-10-01 16:15:10
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 128.3 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 131 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 128.3 — Mozilla
2024-10-01 00:00:00
nessus
nessus
Mozilla Firefox ESR < 128.3
2024-10-01 00:00:00
Mozilla Firefox ESR < 128.3
2024-10-01 00:00:00
Mozilla Firefox < 131.0
2024-10-01 00:00:00
Related for CVELIST:CVE-2024-9397