In specific HSTS configurations an attacker could have bypassed HSTS on a subdomain. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.

CPENameOperatorVersion
debian_linuxeq10.0
firefoxlt122.0
firefox_esrlt115.7
thunderbirdlt115.7

Name	Operator	Version
debian_linux	eq	10.0
firefox	lt	122.0
firefox_esr	lt	115.7
thunderbird	lt	115.7

References

bugzilla.mozilla.org/show_bug.cgi?id=1870262

lists.debian.org/debian-lts-announce/2024/01/msg00015.html

lists.debian.org/debian-lts-announce/2024/01/msg00022.html

www.mozilla.org/security/advisories/mfsa2024-01/

www.mozilla.org/security/advisories/mfsa2024-02/

www.mozilla.org/security/advisories/mfsa2024-04/

veracode 1

cve 1

cnvd 1

alpinelinux 1

debiancve 1

nvd 1

ubuntucve 1

redhatcve 1

cvelist 1

nessus 61

openvas 24

rocky 2

osv 13

kaspersky 3

debian 4

redhat 18

slackware 2

oraclelinux 6

mageia 2

mozilla 3

amazon 1

centos 1

almalinux 4

ubuntu 3

gentoo 2

veracode

Cleartext Transmission Of Sensitive Information

2024-02-03 03:06:15

cve

CVE-2024-0753

2024-01-23 14:15:38

cnvd

Security Bypass Vulnerability in Multiple Mozilla Products (CNVD-2024-10441)

2024-01-26 00:00:00

alpinelinux

CVE-2024-0753

2024-01-23 14:15:38

debiancve

CVE-2024-0753

2024-01-23 14:15:38

nvd

CVE-2024-0753

2024-01-23 14:15:38

ubuntucve

CVE-2024-0753

2024-01-23 00:00:00

redhatcve

CVE-2024-0753

2024-01-25 17:21:01

cvelist

CVE-2024-0753

2024-01-23 13:48:19

nessus

Mozilla Firefox ESR < 115.7

2024-01-23 00:00:00

Mozilla Firefox ESR < 115.7

2024-01-23 00:00:00

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2024:0242-1)

2024-01-27 00:00:00

openvas

Mozilla Firefox ESR Security Advisories (MFSA2024-01, MFSA2024-04) - Mac OS X

2024-01-24 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2024-01, MFSA2024-04) - Windows

2024-01-24 00:00:00

Mozilla Thunderbird Security Advisories (MFSA2024-01, MFSA2024-04) - Windows

2024-01-24 00:00:00

rocky

firefox security update

2024-02-12 20:17:26

thunderbird security update

2024-02-12 20:17:26

osv

thunderbird - security update

2024-01-24 00:00:00

thunderbird - security update

2024-01-25 00:00:00

firefox-esr - security update

2024-01-31 00:00:00

kaspersky

KLA63225 Multiple vulnerabilities in Mozilla Thunderbird

2024-01-23 00:00:00

KLA63224 Multiple vulnerabilities in Mozilla Firefox ESR

2024-01-23 00:00:00

KLA63223 Multiple vulnerabilities in Mozilla Firefox

2024-01-23 00:00:00

debian

[SECURITY] [DSA 5605-1] thunderbird security update

2024-01-24 18:53:24

[SECURITY] [DLA 3727-1] firefox-esr security update

2024-01-31 15:16:20

[SECURITY] [DLA 3720-1] thunderbird security update

2024-01-25 10:49:57

redhat

(RHSA-2024:0565) Important: thunderbird security update

2024-01-30 12:20:19

(RHSA-2024:0608) Important: firefox security update

2024-01-30 14:30:51

(RHSA-2024:0603) Important: firefox security update

2024-01-30 13:57:30

slackware

[slackware-security] mozilla-firefox

2024-01-23 20:15:17

[slackware-security] mozilla-thunderbird

2024-01-24 05:03:37

oraclelinux

firefox security update

2024-01-30 00:00:00

thunderbird security update

2024-01-30 00:00:00

firefox security update

2024-01-31 00:00:00

mageia

Updated thunderbird packages fix security vulnerabilities

2024-02-04 05:49:27

Updated nss and firefox packages fix some security vulnerabilities

2024-02-04 05:49:27

mozilla

Security Vulnerabilities fixed in Firefox ESR 115.7 — Mozilla

2024-01-23 00:00:00

Security Vulnerabilities fixed in Thunderbird 115.7 — Mozilla

2024-01-23 00:00:00

Security Vulnerabilities fixed in Firefox 122 — Mozilla

2024-01-23 00:00:00

amazon

Medium: thunderbird

2024-02-01 19:57:00

centos

firefox, thunderbird security update

2024-02-05 19:24:42

almalinux

Important: firefox security update

2024-01-30 00:00:00

Important: firefox security update

2024-01-30 00:00:00

Important: thunderbird security update

2024-01-30 00:00:00

ubuntu

Firefox vulnerabilities

2024-01-29 00:00:00

Firefox regressions

2024-02-07 00:00:00

Thunderbird vulnerabilities

2024-03-04 00:00:00

gentoo

Mozilla Firefox: Multiple Vulnerabilities

2024-02-19 00:00:00

Mozilla Thunderbird: Multiple Vulnerabilities

2024-02-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

23.4%

JSON

Related for PRION:CVE-2024-0753