Security Advisory

CVE-2024-5692

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-11 12:40:13

Last updated 2026-02-27 16:40:12

Assigner mozilla

State PUBLISHED

Description

On Windows 10, when using the Save As functionality, an attacker could have tricked the browser into saving the file with a disallowed extension such as `.url` by including an invalid character in the extension. *Note:* This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.

← Browse all CVEs View on cve.org ↗