Lucene search
Ubuntu.comUB:CVE-2024-4766HistoryMay 14, 2024 - 12:00 a.m.
CVE-2024-4766
2024-05-1400:00:00
ubuntu.com
ubuntu.com
5
firefox
android
fullscreen notification
spoofing
user confusion
potential attacks
vulnerability
cve-2024-4766
mozjs
spidermonkey
javascript engine
Different techniques existed to obscure the fullscreen notification in
Firefox for Android. These could have lead to potential user confusion and
spoofing attacks. This bug only affects Firefox for Android. Other
versions of Firefox are unaffected. This vulnerability affects Firefox <
126.
Notes
| Author | Note |
|---|---|
| tyhicks | mozjs contains a copy of the SpiderMonkey JavaScript engine |
| mdeslaur | starting with Ubuntu 22.04, the firefox package is just a script that installs the Firefox snap starting with Ubuntu 24.04, the thunderbird package is just a script that installs the Thunderbird snap |
References
bugzilla.mozilla.org/show_bug.cgi?id=1871214
bugzilla.mozilla.org/show_bug.cgi?id=1871217
launchpad.net/bugs/cve/CVE-2024-4766
nvd.nist.gov/vuln/detail/CVE-2024-4766
security-tracker.debian.org/tracker/CVE-2024-4766
www.cve.org/CVERecord?id=CVE-2024-4766
www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4766
www.mozilla.org/security/advisories/mfsa2024-21/
Related
nvd
nvd
CVE-2024-4766
2024-05-14 18:15:13
debiancve
debiancve
CVE-2024-4766
2024-05-14 18:15:13
cvelist
cvelist
CVE-2024-4766
2024-05-14 17:21:25
cve
cve
CVE-2024-4766
2024-05-14 18:15:13
vulnrichment
vulnrichment
CVE-2024-4766
2024-05-14 17:21:25
nessus
nessus
Fedora 39 : firefox (2024-a2c6c8afa9)
2024-05-17 00:00:00
Fedora 40 : firefox (2024-eabe68b149)
2024-05-18 00:00:00
Mozilla Firefox < 126.0
2024-05-14 00:00:00
kaspersky
kaspersky
KLA67588 Multiple vulnerabilities in Mozilla Firefox
2024-05-14 00:00:00
osv
osv
MozillaFirefox-126.0-1.1 on GA media
2024-06-15 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 126 — Mozilla
2024-05-14 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple Vulnerabilities
2024-08-06 00:00:00