CVE-2024-1563

Publication date

2024-02-22 14:56:42

Family

mozilla

State

PUBLISHED

Description

An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme and a timeout race condition. This vulnerability affects Focus for iOS < 122.