exploitDog

CVE-2024-0953

Опубликовано: 05 фев. 2024

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. This may surprise the user and potentially direct them to unwanted content. This vulnerability affects Firefox for iOS < 129.

Ссылки

https://bugzilla.mozilla.org/show_bug.cgi?id=1837916
Exploit
Issue Tracking
https://www.mozilla.org/security/advisories/mfsa2024-36/
https://bugzilla.mozilla.org/show_bug.cgi?id=1837916
Exploit
Issue Tracking

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mozilla:firefox:-:*:*:*:*:iphone_os:*:*

EPSS

Процентиль: 29%

0.00145

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601

CWE-601

Связанные уязвимости

CVE-2024-0953

CVSS3: 6.1

debian

почти 2 года назад

When a user scans a QR Code with the QR Code Scanner feature, the user ...

GHSA-whq9-vwxq-6f23

CVSS3: 6.1

github

почти 2 года назад

When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. This may surprise the user and potentially direct them to unwanted content.

EPSS

Процентиль: 29%

0.00145

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601

CWE-601