CVE-2024-11701 | THREATINT

Description

The incorrect domain may have been displayed in the address bar during an interrupted navigation attempt. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 133 and Thunderbird < 133.

PUBLISHED Reserved 2024-11-25 | Published 2024-11-26 | Updated 2024-11-27 | Assigner mozilla

Problem types

Misleading Address Bar State During Navigation Interruption

Product status

Any version before 133

affected

Any version before 133

affected

Credits

Daniel Holbert

References

bugzilla.mozilla.org/show_bug.cgi?id=1914797

www.mozilla.org/security/advisories/mfsa2024-63/

www.mozilla.org/security/advisories/mfsa2024-67/

cve.org (CVE-2024-11701)

nvd.nist.gov (CVE-2024-11701)

Download JSON