Lucene search
MozillaVULNRICHMENT:CVE-2024-26284HistoryFeb 22, 2024 - 2:56 p.m.
CVE-2024-26284
2024-02-2214:56:42
mozilla
github.com
4
302 redirect
universal cross-site scripting
focus for ios
AI Score
5.9
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Utilizing a 302 redirect, an attacker could have conducted a Universal Cross-Site Scripting (UXSS) on a victim website, if the victim had a link to the attacker’s website. This vulnerability affects Focus for iOS < 123.
CNA Affected
[
{
"vendor": "Mozilla",
"product": "Focus for iOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "123",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2024-26284
2024-02-22 14:56:42
nvd
nvd
CVE-2024-26284
2024-02-22 15:15:08
mozilla
mozilla
Security Vulnerabilities fixed in Focus for iOS 123 — Mozilla
2024-02-19 00:00:00
prion
prion
Cross site scripting
2024-02-22 15:15:00
cve
cve
CVE-2024-26284
2024-02-22 15:15:08
AI Score
5.9
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-26284