CVE-2024-10458

Oct. 29, 2024, 2:34 p.m.

Product(s) Impacted

Firefox

  • < 132
  • ESR < 128.4
  • ESR < 115.17

Thunderbird

  • < 128.4
  • < 132

Description

A permission leak could have occurred from a trusted site to an untrusted site via `embed` or `object` elements. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Firefox ESR < 115.17, Thunderbird < 128.4, and Thunderbird < 132.

Weaknesses

Date

Published: Oct. 29, 2024, 1:15 p.m.

Last Modified: Oct. 29, 2024, 2:34 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@mozilla.org

References