Security Advisory

CVE-2024-4765

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-14 17:21:25

Last updated 2024-08-29 20:28:35

Assigner mozilla

State PUBLISHED

Description

Web application manifests were stored by using an insecure MD5 hash which allowed for a hash collision to overwrite another applications manifest. This could have been exploited to run arbitrary code in another applications context. *This issue only affects Firefox for Android. Other versions of Firefox are unaffected.* This vulnerability affects Firefox < 126.

← Browse all CVEs View on cve.org ↗