Security Advisory

CVE-2024-1550

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-20 13:21:35

Last updated 2025-03-27 20:05:58

Assigner mozilla

State PUBLISHED

Description

A malicious website could have used a combination of exiting fullscreen mode and `requestPointerLock` to cause the users mouse to be re-positioned unexpectedly, which could have led to user confusion and inadvertently granting permissions they did not intend to grant. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

← Browse all CVEs View on cve.org ↗