CVE-2024-10474
published 2024-10-29CVE-2024-10474: Focus was incorrectly allowing internal links to utilize the app scheme used for deeplinking, which could result in links potentially circumventing some URL…
medium6.5CVSS 3.1
AVNACLPRNUIRSUCNIHAN
Focus was incorrectly allowing internal links to utilize the app scheme used for deeplinking, which could result in links potentially circumventing some URL safety checks This vulnerability affects Focus for iOS < 132.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox_focus | < 132.0 | 132.0 |
| mozilla | focus_for_ios | >= unspecified < 132 | 132 |