Lucene search
MozillaVULNRICHMENT:CVE-2024-9398HistoryOct 01, 2024 - 3:13 p.m.
CVE-2024-9398
2024-10-0115:13:20
mozilla
github.com
window.open
protocol handlers
attacker
application
firefox
thunderbird
By checking the result of calls to window.open with specifically set protocol handlers, an attacker could determine if the application which implements that protocol handler is installed. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and Thunderbird < 131.
Related
cvelist
cvelist
CVE-2024-9398
2024-10-01 15:13:20
nvd
nvd
CVE-2024-9398
2024-10-01 16:15:10
alpinelinux
alpinelinux
CVE-2024-9398
2024-10-01 16:15:10
cve
cve
CVE-2024-9398
2024-10-01 16:15:10
debiancve
debiancve
CVE-2024-9398
2024-10-01 16:15:10
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 128.3 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 131 — Mozilla
2024-10-01 00:00:00
Security Vulnerabilities fixed in Thunderbird 128.3 — Mozilla
2024-10-01 00:00:00
nessus
nessus
Mozilla Firefox ESR < 128.3
2024-10-01 00:00:00
Mozilla Firefox ESR < 128.3
2024-10-01 00:00:00
Mozilla Firefox < 131.0
2024-10-01 00:00:00
AI Score
5.9
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-9398