A bug in popup notifications' interaction with WebAuthn made it easier for an attacker to trick a user into granting permissions. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.
Metrics
Affected Vendors & Products
References
History
Thu, 21 Nov 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-281 | |
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2024-05-14T17:21:24.047Z
Updated: 2024-11-21T16:03:03.223Z
Reserved: 2024-05-10T17:37:04.311Z
Link: CVE-2024-4768
Vulnrichment
Updated: 2024-08-01T20:47:41.692Z
NVD
Status : Awaiting Analysis
Published: 2024-05-14T18:15:14.013
Modified: 2024-11-21T16:15:26.283
Link: CVE-2024-4768
Redhat