CVE-2024-7529

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 6, 2024

Updated: Aug 12, 2024

CWE ID 451

Summary

CVE-2024-7529 is a vulnerability affecting Firefox versions below 129, Firefox ESR below 115.14, Firefox ESR below 128.1, Thunderbird versions below 115.14, and Thunderbird below 128.1. The issue lies with a date picker component that partially obscures security prompts. Malicious websites could exploit this vulnerability to trick users into granting permissions unintentionally, posing a security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Mozilla Thunderbird
Mozilla Firefox
Mozilla Firefox ESR

Affected Vendors

Mozilla

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xhh04k
https://www.cve.org/CVERecord?id=CVE-2024-7529
https://nvd.nist.gov/vuln/detail/CVE-2024-7529

Back to Vulnerability Database