Lucene search
Redhat.comRH:CVE-2024-0749HistoryJan 25, 2024 - 5:20 p.m.
CVE-2024-0749
2024-01-2517:20:54
redhat.com
access.redhat.com
17
mozilla
firefox
phishing
about: dialog
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
19.4%
The Mozilla Foundation Security Advisory describes this flaw as: A phishing site could have repurposed an about: dialog to show phishing content with an incorrect origin in the address bar.
Related
cnvd
cnvd
Multiple Mozilla Products Spoofing Vulnerabilities
2024-01-26 00:00:00
ubuntucve
ubuntucve
CVE-2024-0749
2024-01-23 00:00:00
nvd
nvd
CVE-2024-0749
2024-01-23 14:15:38
veracode
veracode
Origin Validation Error
2024-02-03 03:03:49
cvelist
cvelist
CVE-2024-0749
2024-01-23 13:48:17
cve
cve
CVE-2024-0749
2024-01-23 14:15:38
prion
prion
Design/Logic Flaw
2024-01-23 14:15:00
debiancve
debiancve
CVE-2024-0749
2024-01-23 14:15:38
openvas
openvas
debian
debian
[SECURITY] [DSA 5606-1] firefox-esr security update
2024-01-24 19:18:38
[SECURITY] [DSA 5605-1] thunderbird security update
2024-01-24 18:53:24
[SECURITY] [DLA 3727-1] firefox-esr security update
2024-01-31 15:16:20
osv
osv
thunderbird - security update
2024-01-24 00:00:00
thunderbird - security update
2024-01-25 00:00:00
firefox-esr - security update
2024-01-31 00:00:00
nessus
nessus
RHEL 7 : firefox (RHSA-2024:0600)
2024-01-30 00:00:00
RHEL 8 : firefox (RHSA-2024:0618)
2024-01-31 00:00:00
RHEL 9 : thunderbird (RHSA-2024:0616)
2024-01-30 00:00:00
rocky
rocky
firefox security update
2024-02-12 20:17:26
thunderbird security update
2024-02-12 20:17:26
redhat
redhat
(RHSA-2024:0565) Important: thunderbird security update
2024-01-30 12:20:19
(RHSA-2024:0608) Important: firefox security update
2024-01-30 14:30:51
(RHSA-2024:0615) Important: firefox security update
2024-01-30 15:13:24
kaspersky
kaspersky
KLA63225 Multiple vulnerabilities in Mozilla Thunderbird
2024-01-23 00:00:00
KLA63224 Multiple vulnerabilities in Mozilla Firefox ESR
2024-01-23 00:00:00
KLA63223 Multiple vulnerabilities in Mozilla Firefox
2024-01-23 00:00:00
oraclelinux
oraclelinux
firefox security update
2024-01-30 00:00:00
thunderbird security update
2024-01-30 00:00:00
firefox security update
2024-01-31 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2024-02-04 05:49:27
Updated nss and firefox packages fix some security vulnerabilities
2024-02-04 05:49:27
slackware
slackware
[slackware-security] mozilla-firefox
2024-01-23 20:15:17
[slackware-security] mozilla-thunderbird
2024-01-24 05:03:37
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.7 — Mozilla
2024-01-23 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.7 — Mozilla
2024-01-23 00:00:00
Security Vulnerabilities fixed in Firefox 122 — Mozilla
2024-01-23 00:00:00
amazon
amazon
Medium: thunderbird
2024-02-01 19:57:00
centos
centos
firefox, thunderbird security update
2024-02-05 19:24:42
almalinux
almalinux
Important: firefox security update
2024-01-30 00:00:00
Important: thunderbird security update
2024-01-30 00:00:00
Important: firefox security update
2024-01-30 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2024-01-29 00:00:00
Firefox regressions
2024-02-07 00:00:00
Thunderbird vulnerabilities
2024-03-04 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple Vulnerabilities
2024-02-19 00:00:00
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
redos
redos
ROS-20240923-02
2024-09-23 00:00:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
19.4%
Related for RH:CVE-2024-0749