CVE-2024-7529

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 6, 2024

Updated: Aug 12, 2024

CWE ID 451

Summary

CVE-2024-7529 is a vulnerability affecting Firefox versions below 129, Firefox ESR below 115.14, Firefox ESR below 128.1, Thunderbird versions below 115.14, and Thunderbird below 128.1. The issue lies with a date picker component that partially obscures security prompts. Malicious websites could exploit this vulnerability to trick users into granting permissions unintentionally, posing a security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Mozilla Thunderbird
Mozilla Firefox
Mozilla Firefox ESR

Affected Vendors

Mozilla

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xhh04k
https://www.cve.org/CVERecord?id=CVE-2024-7529
https://nvd.nist.gov/vuln/detail/CVE-2024-7529

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Know What Matters

For Customers

For Partners