CVE-2024-43113
published 2024-08-06CVE-2024-43113: The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129.
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | — | — |
| mozilla | firefox | < 129 | 129 |
| mozilla | firefox | — | — |
| mozilla | firefox_for_ios | >= unspecified < 129 | 129 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
osv6.1MEDIUM
OSV
CVE-2024-43113: The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129
osv·2024-08-06·CVSS 6.1
CVE-2024-43113 [MEDIUM] CVE-2024-43113: The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129
The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129.
GHSA
GHSA-5x3f-3wg2-mc2h: The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129
ghsa_unreviewed·2024-08-06
CVE-2024-43113 [MEDIUM] CWE-79 GHSA-5x3f-3wg2-mc2h: The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129
The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129.
Oracle
Oracle Oracle Insurance Applications Risk Matrix: Enterprise Edition (iTextPDF) — CVE-2021-43113
vendor_oracle·2024-04-15·CVSS 7.8
CVE-2021-43113 [CRITICAL] Oracle Oracle Insurance Applications Risk Matrix: Enterprise Edition (iTextPDF) — CVE-2021-43113
Oracle Oracle Insurance Applications Risk Matrix: Enterprise Edition (iTextPDF) vulnerability
CVE: CVE-2021-43113
CVSS: 7.8
Protocol: None
Remote exploit: No
Affected versions: Local
Advisory: cpuapr2024 (APR 2024)
Debian
CVE-2024-43113: firefox - The contextual menu for links could provide an opportunity for cross-site script...
vendor_debian·2024·CVSS 6.1
CVE-2024-43113 [MEDIUM] CVE-2024-43113: firefox - The contextual menu for links could provide an opportunity for cross-site script...
The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129.
Scope: local
sid: resolved
Mozilla
Mozilla Foundation Security Advisory 2024-36: CVE-2024-43113
vendor_mozilla·CVSS 6.1
CVE-2024-43113 [MEDIUM] Mozilla Foundation Security Advisory 2024-36: CVE-2024-43113
Mozilla Foundation Security Advisory 2024-36
CVE: CVE-2024-43113
Product: Firefox for iOS
Impact: low
Fixed in: Firefox for iOS 129
No detection rules found.
No public exploits indexed.
2024-08-06
Published