Security Advisory

CVE-2024-2610

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-19 12:02:55

Last updated 2025-02-13 17:41:01

Assigner mozilla

State PUBLISHED

Description

Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

← Browse all CVEs View on cve.org ↗