CVE-2024-11695

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Nov 26, 2024
Updated: Nov 27, 2024
CWE ID 1021

Summary

CVE-2024-11695 is a vulnerability affecting Firefox versions below 133 and Firefox ESR below 128.5, as well as Thunderbird versions below 133 and Thunderbird ESR below 128.5. Maliciously crafted URLs containing Arabic script and whitespace characters can deceive users by concealing the true origin of webpages, potentially leading to spoofing attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Mozilla Thunderbird
  • Mozilla Firefox
  • Mozilla Firefox ESR

Affected Vendors

  • Mozilla