CVE-2024-9398 | Mozilla Thunderbird up to 128.2/130 Protocol window.open information disclosure

10月 1, 2024
4:56 pm

A vulnerability was found in Mozilla Thunderbird up to 128.2/130. It has been classified as problematic. This affects the function window.open of the component Protocol Handler. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2024-9398. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-9398 | Mozilla Thunderbird up to 128.2/130 Protocol window.open information disclosure

Elvescore.io

Recent Posts

CVE-2024-11852 – Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows) WordPress Unauthenticated Data Access Vulnerability

CVE-2024-12884 – Codezips E-Commerce Website SQL Injection

CVE-2024-51463 – IBM i SSRF

CVE-2024-51464 – IBM Navigator for i Access Bypass Vulnerability

CVE-2024-12883 – Code-projects Job Recruitment Cross Site Scripting

CVE-2024-12875 – Easy Digital Downloads WordPress Directory Traversal Vulnerability

CVE-2024-9398 | Mozilla Thunderbird up to 128.2/130 Protocol window.open information disclosure

CVE-2024-9398 | Mozilla Thunderbird up to 128.2/130 Protocol window.open information disclosure