Security Advisory

CVE-2024-10460

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-29 12:19:10

Last updated 2025-11-03 21:51:14

Assigner mozilla

State PUBLISHED

Description

The origin of an external protocol handler prompt could have been obscured using a data: URL within an `iframe`. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.

← Browse all CVEs View on cve.org ↗