June 11, 2024, 1:54 p.m.

Awaiting Analysis
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.


Firefox for Android

  • < 127



CVE-2024-5687 details

Published : June 11, 2024, 1:15 p.m.
Last Modified : June 11, 2024, 1:54 p.m.


If a specific sequence of actions is performed when opening a new tab, the triggering principal associated with the new tab may have been incorrect. The triggering principal is used to calculate many values, including the `Referer` and `Sec-*` headers, meaning there is the potential for incorrect security checks within the browser in addition to incorrect or misleading information sent to remote websites. *This bug only affects Firefox for Android. Other versions of Firefox are unaffected.* This vulnerability affects Firefox < 127.

CVSS Score

1 2 3 4 5 6 7 8 9 10


Weakness Name Description
This website uses the NVD API, but is not approved or certified by it.