Lucene search
Veracode Vulnerability DatabaseVERACODE:45989HistoryMar 25, 2024 - 1:32 a.m.
Content Security Policy Bypass
2024-03-2501:32:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
content security policy
bypass
firefox-esr
nonce validation
attackers
firefox-esr is vulnerable to Content Security Policy Bypass. The vulnerability is due to insufficient validation of nonce values, allowing attackers to bypass strict content security policies.
References
bugzilla.mozilla.org/show_bug.cgi?id=1871112
lists.debian.org/debian-lts-announce/2024/03/msg00022.html
lists.debian.org/debian-lts-announce/2024/03/msg00028.html
security-tracker.debian.org/tracker/CVE-2024-2610
www.mozilla.org/security/advisories/mfsa2024-12/
www.mozilla.org/security/advisories/mfsa2024-13/
www.mozilla.org/security/advisories/mfsa2024-14/
Related
nvd
nvd
CVE-2024-2610
2024-03-19 12:15:08
ubuntucve
ubuntucve
CVE-2024-2610
2024-03-19 00:00:00
cnvd
cnvd
Multiple Mozilla product security bypass vulnerabilities (CNVD-2024-14980)
2024-03-21 00:00:00
debiancve
debiancve
CVE-2024-2610
2024-03-19 12:15:08
alpinelinux
alpinelinux
CVE-2024-2610
2024-03-19 12:15:08
cgr
cgr
CVE-2024-2610 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2024-2610
2024-03-19 12:15:08
redhatcve
redhatcve
CVE-2024-2610
2024-03-21 11:39:37
cvelist
cvelist
CVE-2024-2610
2024-03-19 12:02:55
amazon
amazon
Important: thunderbird
2024-03-27 21:32:00
nessus
nessus
Amazon Linux 2 : thunderbird (ALAS-2024-2505)
2024-04-01 00:00:00
Amazon Linux 2 : firefox (ALASFIREFOX-2024-023)
2024-04-01 00:00:00
Oracle Linux 8 : thunderbird (ELSA-2024-1494)
2024-03-27 00:00:00
openvas
openvas
Mozilla Thunderbird Security Update (mfsa_2024-14) - Mac OS X
2024-03-25 00:00:00
Mozilla Firefox ESR Security Update (mfsa_2024-13) - Mac OS X
2024-03-25 00:00:00
Ubuntu: Security Advisory (USN-6717-1)
2024-03-27 00:00:00
redhat
redhat
(RHSA-2024:1496) Moderate: thunderbird security update
2024-03-25 18:33:37
(RHSA-2024:1498) Moderate: thunderbird security update
2024-03-25 18:33:53
(RHSA-2024:1499) Moderate: thunderbird security update
2024-03-25 18:34:00
oraclelinux
oraclelinux
thunderbird security update
2024-03-26 00:00:00
thunderbird security update
2024-03-26 00:00:00
thunderbird security update
2024-03-25 00:00:00
osv
osv
Moderate: thunderbird security update
2024-03-25 00:00:00
Moderate: thunderbird security update
2024-03-25 00:00:00
Moderate: thunderbird security update
2024-03-27 04:34:32
debian
debian
[SECURITY] [DSA 5643-1] firefox-esr security update
2024-03-21 19:19:35
[SECURITY] [DSA 5644-1] thunderbird security update
2024-03-21 19:22:16
[SECURITY] [DLA 3769-1] thunderbird security update
2024-03-23 11:22:35
almalinux
almalinux
Moderate: thunderbird security update
2024-03-25 00:00:00
Moderate: thunderbird security update
2024-03-25 00:00:00
Critical: firefox security update
2024-03-25 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.9 — Mozilla
2024-03-19 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.9 — Mozilla
2024-03-19 00:00:00
Security Vulnerabilities fixed in Firefox 124 — Mozilla
2024-03-19 00:00:00
mageia
mageia
Updated nss firefox, nss packages fix security vulnerabilities
2024-03-27 22:24:13
Updated thunderbird packages fix security vulnerabilities
2024-03-27 22:40:25
ubuntu
ubuntu
Thunderbird vulnerabilities
2024-03-26 00:00:00
Firefox vulnerabilities
2024-03-20 00:00:00
rocky
rocky
thunderbird security update
2024-03-27 04:34:32
firefox security update
2024-03-27 04:34:32
centos
centos
thunderbird security update
2024-04-03 14:01:39
firefox security update
2024-04-03 14:00:43
slackware
slackware
[slackware-security] mozilla-firefox
2024-03-20 00:27:50
[slackware-security] mozilla-thunderbird
2024-03-20 00:28:21
kaspersky
kaspersky
KLA65226 Multiple vulnerabilities in Mozilla Thunderbird
2024-03-19 00:00:00
KLA65225 Multiple vulnerabilities in Mozilla Firefox ESR
2024-03-19 00:00:00
KLA65224 Multiple vulnerabilities in Mozilla Firefox
2024-03-19 00:00:00