CVSS 3.1 Score 6.5 of 10 (medium)


Published Jan 23, 2024
Updated: Feb 2, 2024


CVE-2024-0753 is a cyber vulnerability that affects specific HSTS configurations. It allows an attacker to bypass HSTS on a subdomain. The vulnerability impacts Firefox versions before 122, Firefox ESR versions before 115.7, and Thunderbird versions before 115.7. The potential danger to an organization includes high integrity impact but no confidentiality impact. The exploitability score is 2.8 out of 10, indicating a medium base severity with a score of 6.5 out of 10. The attack vector is through the network and user interaction is required for exploitation. The vulnerability has an impact score of 3.6 out of 10, with low attack complexity and no availability impact. This information was provided by the National Vulnerability Database (NVD) at NIST.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0753 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options