Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2024-03-19T12:02:55.079Z
Updated: 2024-08-01T19:18:47.766Z
Reserved: 2024-03-18T16:22:28.164Z
Link: CVE-2024-2610
Vulnrichment
Updated: 2024-08-01T19:18:47.766Z
NVD
Status : Awaiting Analysis
Published: 2024-03-19T12:15:08.957
Modified: 2024-03-25T17:15:51.833
Link: CVE-2024-2610
Redhat