CVE-2024-26284
published 2024-02-22CVE-2024-26284: Utilizing a 302 redirect, an attacker could have conducted a Universal Cross-Site Scripting (UXSS) on a victim website, if the victim had a link to the…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
Utilizing a 302 redirect, an attacker could have conducted a Universal Cross-Site Scripting (UXSS) on a victim website, if the victim had a link to the attacker's website. This vulnerability affects Focus for iOS < 123.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | — | — |
| mozilla | firefox_focus | < 123.0 | 123.0 |
| mozilla | focus_for_ios | >= unspecified < 123 | 123 |