Lucene search

[email protected]NVD:CVE-2024-4773

HistoryMay 14, 2024 - 6:15 p.m.

CVE-2024-4773

2024-05-1418:15:15

CWE-601

[email protected]

web.nvd.nist.gov

network error

firefox

security vulnerability

spoofed website

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

5.5

Confidence

Low

EPSS

0.001

Percentile

25.8%

JSON

When a network error occurred during page load, the prior content could have remained in view with a blank URL bar. This could have been used to obfuscate a spoofed web site. This vulnerability affects Firefox < 126.

References

bugzilla.mozilla.org/show_bug.cgi?id=1875248

www.mozilla.org/security/advisories/mfsa2024-21/

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

5.5

Confidence

Low

EPSS

0.001

Percentile

25.8%

JSON

Related for NVD:CVE-2024-4773

osv3 cve1 ubuntucve1 cvelist1 debiancve1 veracode1 vulnrichment1 nessus7 openvas5 ubuntu2 kaspersky1 mozilla1 gentoo1