CVE-2024-10004 Vulnerability Details

  /     /     /  

CVE-2024-10004 Metadata Quick Info

CVE Published: 15/10/2024 | CVE Updated: 16/10/2024 | CVE Year: 2024
Source: mozilla | Vendor: Mozilla | Product: Firefox for iOS
Status : PUBLISHED

---

CVE-2024-10004 Description

Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS tab open could in some cases result in the padlock icon showing an HTTPS indicator incorrectly This vulnerability affects Firefox for iOS < 131.2.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Opening external link to HTTP website could show an HTTPS padlock icon incorrectly
Source: Mozilla

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).