CVE-2024-26283 — Mozilla Firefox FOR IOS vulnerability

Vendor	Product	Version range	Fixed in
debian	firefox	—	—
mozilla	firefox	< 123.0	123.0
mozilla	firefox	—	—
mozilla	firefox_for_ios	>= unspecified < 123	123

Debian

CVE-2024-26283: firefox - An attacker could have executed unauthorized scripts on top origin sites using a...

vendor_debian·2024·CVSS 7.8

CVE-2024-26283 [HIGH] CVE-2024-26283: firefox - An attacker could have executed unauthorized scripts on top origin sites using a... An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme. This vulnerability affects Firefox for iOS < 123. Scope: local sid: resolved

Mozilla

Mozilla Foundation Security Advisory 2024-08: CVE-2024-26283

vendor_mozilla·CVSS 7.8

CVE-2024-26283 [HIGH] Mozilla Foundation Security Advisory 2024-08: CVE-2024-26283 Mozilla Foundation Security Advisory 2024-08 CVE: CVE-2024-26283 Product: Firefox for iOS Impact: moderate Fixed in: Firefox for iOS 123

GHSA

GHSA-37wm-h7xg-q6w9: An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox sch

ghsa_unreviewed·2024-02-22

CVE-2024-26283 [HIGH] CWE-83 GHSA-37wm-h7xg-q6w9: An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox sch An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme. This vulnerability affects Firefox for iOS < 123.

CVE-2024-26283: An attacker could have executed unauthorized scripts on top origin sites using a JavaScript URI when opening an external URL with a custom Firefox scheme. This…

Affected