Lucene search
MozillaCVE-2024-26281HistoryFeb 22, 2024 - 3:15 p.m.
CVE-2024-26281
2024-02-2215:15:08
mozilla
web.nvd.nist.gov
5297
cve
2024
26281
javascript
uri
qr code
vulnerability
firefox
ios
nvd
Upon scanning a JavaScript URI with the QR code scanner, an attacker could have executed unauthorized scripts on the current top origin sites in the URL bar. This vulnerability affects Firefox for iOS < 123.
Affected configurations
Node
mozillafirefox_for_iosRange≤123
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mozilla | firefox_for_ios | * | cpe:2.3:a:mozilla:firefox_for_ios:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Firefox for iOS",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "123",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2024-26281
2024-02-22 14:56:45
debiancve
debiancve
CVE-2024-26281
2024-02-22 15:15:08
vulnrichment
vulnrichment
CVE-2024-26281
2024-02-22 14:56:45
nvd
nvd
CVE-2024-26281
2024-02-22 15:15:08
prion
prion
Code injection
2024-02-22 15:15:00
cnvd
cnvd
Mozilla Firefox for iOS cross-site scripting vulnerability (CNVD-2024-12554)
2024-03-01 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox for iOS 123 — Mozilla
2024-02-19 00:00:00