Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-1548

Опубликовано: 20 фев. 2024
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 4.3

Описание

A website could have obscured the fullscreen notification by using a dropdown select input element. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

code not present
esm-infra/focal

DNE

focal

released

123.0+build3-0ubuntu0.20.04.1
jammy

not-affected

code not present
mantic

not-affected

code not present
noble

not-affected

code not present
trusty

ignored

end of standard support
upstream

needs-triage

xenial

ignored

end of standard support

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

ignored

esm-apps/noble

ignored

esm-infra/focal

DNE

focal

DNE

jammy

ignored

mantic

ignored

end of life, was needs-triage
noble

ignored

trusty

DNE

upstream

ignored

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

DNE

esm-apps/bionic

ignored

esm-infra/focal

DNE

focal

DNE

jammy

DNE

mantic

DNE

noble

DNE

trusty

DNE

upstream

ignored

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

DNE

esm-apps/focal

ignored

esm-infra/bionic

ignored

focal

ignored

jammy

DNE

mantic

DNE

noble

DNE

trusty

DNE

upstream

ignored

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra/focal

ignored

focal

ignored

jammy

DNE

mantic

DNE

noble

DNE

trusty

DNE

upstream

ignored

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/jammy

ignored

esm-infra/focal

DNE

focal

DNE

jammy

ignored

mantic

DNE

noble

DNE

trusty

DNE

upstream

ignored

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra/focal

DNE

focal

DNE

jammy

ignored

mantic

DNE

noble

DNE

trusty

DNE

upstream

ignored

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

code not present
esm-infra/focal

DNE

focal

released

1:115.8.1+build1-0ubuntu0.20.04.1
jammy

released

1:115.8.1+build1-0ubuntu0.22.04.1
mantic

released

1:115.8.1+build1-0ubuntu0.23.10.1
noble

not-affected

code not present
trusty

ignored

end of standard support
upstream

needs-triage

xenial

ignored

end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 57%
0.00357
Низкий

4.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2024-1548

CVSS3: 6.1
redhat
больше 1 года назад

A website could have obscured the fullscreen notification by using a dropdown select input element. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

nvd логотип

CVE-2024-1548

CVSS3: 4.3
nvd
больше 1 года назад

A website could have obscured the fullscreen notification by using a dropdown select input element. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

debian логотип

CVE-2024-1548

CVSS3: 4.3
debian
больше 1 года назад

A website could have obscured the fullscreen notification by using a d ...

github логотип

GHSA-9m3j-vpcw-4f37

CVSS3: 4.3
github
больше 1 года назад

A website could have obscured the fullscreen notification by using a dropdown select input element. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 123 and Firefox ESR < 115.8.

fstec логотип

BDU:2024-01619

CVSS3: 5.4
fstec
больше 1 года назад

Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с ошибками представления информации пользовательским интерфейсом, позволяющая нарушителю проводить спуфинг-атаки

EPSS

Процентиль: 57%
0.00357
Низкий

4.3 Medium

CVSS3