Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentMozillaVULNRICHMENT:CVE-2024-1563
HistoryFeb 22, 2024 - 2:56 p.m.

CVE-2024-1563

2024-02-2214:56:42
mozilla
github.com
2
javascript
firefox
ios
vulnerability
race condition
top origin sites
unauthorized scripts

AI Score

6.4

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme and a timeout race condition. This vulnerability affects Focus for iOS < 122.

CNA Affected

[
  {
    "vendor": "Mozilla",
    "product": "Focus for iOS",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "lessThan": "122",
        "versionType": "custom"
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
mozilla 1
cvelist 1
nvd
nvd
CVE-2024-1563
2024-02-22 15:15:08
prion
prion
Race condition
2024-02-22 15:15:00
cve
cve
CVE-2024-1563
2024-02-22 15:15:08
mozilla
mozilla
Security Vulnerabilities fixed in Focus for iOS 122 — Mozilla
2024-02-19 00:00:00
cvelist
cvelist
CVE-2024-1563
2024-02-22 14:56:42

AI Score

6.4

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-1563
nvd1prion1cve1mozilla1cvelist1