CVE-2024-9394
published 2024-10-01CVE-2024-9394: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This could allow them to…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This could allow them to access cross-origin JSON content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full cross-origin access is possible on Android versions. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 128.3, and Thunderbird < 131.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 131.0-1 (sid) | firefox 131.0-1 (sid) |
| debian | firefox-esr | < firefox 131.0-1 (sid) | firefox 131.0-1 (sid) |
| debian | thunderbird | < firefox 131.0-1 (sid) | firefox 131.0-1 (sid) |
| mozilla | firefox | < 131.0 | 131.0 |
| mozilla | firefox | — | — |
| mozilla | firefox | >= 0 < 131.0+build1.1-0ubuntu0.20.04.1 | 131.0+build1.1-0ubuntu0.20.04.1 |
| mozilla | firefox | >= unspecified < 131 | 131 |
| mozilla | firefox_esr | < 115.16.0 | 115.16.0 |
| mozilla | firefox_esr | >= 116.0 < 128.3.0 | 128.3.0 |
| mozilla | firefox_esr | >= unspecified < 128.3 | 128.3 |
| mozilla | firefox_esr | >= unspecified < 115.16 | 115.16 |
| mozilla | thunderbird | < 128.3 | 128.3 |
| mozilla | thunderbird | — | — |
| mozilla | thunderbird | >= 0 < 1:115.16.0esr-1~deb11u1 | 1:115.16.0esr-1~deb11u1 |
| mozilla | thunderbird | >= 0 < 1:115.16.0esr-1~deb12u1 | 1:115.16.0esr-1~deb12u1 |
| mozilla | thunderbird | >= 0 < 1:128.3.0esr-1 | 1:128.3.0esr-1 |
| mozilla | thunderbird | >= 0 < 1:128.3.0esr-1 | 1:128.3.0esr-1 |
| mozilla | thunderbird | >= unspecified < 128.3 | 128.3 |
| mozilla | thunderbird | >= unspecified < 131 | 131 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
osv9.8CRITICAL
OSV
firefox vulnerabilities
osv·2024-10-07·CVSS 9.8
CVE-2024-9392 [CRITICAL] firefox vulnerabilities
firefox vulnerabilities
Multiple security issues were discovered in Firefox. If a user were
tricked into opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, obtain sensitive
information across domains, or execute arbitrary code. (CVE-2024-9392,
CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399, CVE-2024-9400,
CVE-2024-9401, CVE-2024-9402, CVE-2024-9403)
Masato Kinugawa discovered that Firefox did not properly validate
javascript under the "resource://pdf.js" origin. An attacker could
potentially exploit this issue to execute arbitrary javascript code and
access cross-origin PDF content. (CVE-2024-9393)
Masato Kinugawa discovered that Firefox did not properly validate
javascript under the "resource://devtools" origin. An
OSV
CVE-2024-9394: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin
osv·2024-10-01·CVSS 7.5
CVE-2024-9394 [HIGH] CVE-2024-9394: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin
An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This could allow them to access cross-origin JSON content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full cross-origin access is possible on Android versions. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 128.3, and Thunderbird < 131.
GHSA
GHSA-qph8-rvxf-5936: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin
ghsa_unreviewed·2024-10-01
CVE-2024-9394 [HIGH] CWE-79 GHSA-qph8-rvxf-5936: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin
An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This could allow them to access cross-origin JSON content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full cross-origin access is possible on Android versions. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 128.3, and Thunderbird < 131.
Ubuntu
Firefox vulnerabilities
vendor_ubuntu·2024-10-07·CVSS 9.8
CVE-2024-9394 [CRITICAL] Firefox vulnerabilities
Title: Firefox vulnerabilities
Summary: Several security issues were fixed in Firefox.
Multiple security issues were discovered in Firefox. If a user were
tricked into opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, obtain sensitive
information across domains, or execute arbitrary code. (CVE-2024-9392,
CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399, CVE-2024-9400,
CVE-2024-9401, CVE-2024-9402, CVE-2024-9403)
Masato Kinugawa discovered that Firefox did not properly validate
javascript under the "resource://pdf.js" origin. An attacker could
potentially exploit this issue to execute arbitrary javascript code and
access cross-origin PDF content. (CVE-2024-9393)
Masato Kinugawa discovered that Firefox did not properl
Red Hat
firefox: thunderbird: Cross-origin access to JSON contents through multipart responses
vendor_redhat·2024-10-01·CVSS 7.5
CVE-2024-9394 [HIGH] CWE-94 firefox: thunderbird: Cross-origin access to JSON contents through multipart responses
firefox: thunderbird: Cross-origin access to JSON contents through multipart responses
An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This could allow them to access cross-origin JSON content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full cross-origin access is possible on Android versions. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 128.3, and Thunderbird < 131.
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the resource://devtools origi
Debian
CVE-2024-9394: firefox - An attacker could, via a specially crafted multipart response, execute arbitrary...
vendor_debian·2024·CVSS 7.5
CVE-2024-9394 [HIGH] CVE-2024-9394: firefox - An attacker could, via a specially crafted multipart response, execute arbitrary...
An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This could allow them to access cross-origin JSON content. This access is limited to "same site" documents by the Site Isolation feature on desktop clients, but full cross-origin access is possible on Android versions. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 128.3, and Thunderbird < 131.
Scope: local
sid: resolved (fixed in 131.0-1)
Mozilla
Mozilla Foundation Security Advisory 2024-49: CVE-2024-9394
vendor_mozilla·CVSS 7.5
CVE-2024-9394 [HIGH] Mozilla Foundation Security Advisory 2024-49: CVE-2024-9394
Mozilla Foundation Security Advisory 2024-49
CVE: CVE-2024-9394
Product: Thunderbird
Impact: high
Fixed in: Thunderbird 128.3
Mozilla
Mozilla Foundation Security Advisory 2024-46: CVE-2024-9394
vendor_mozilla·CVSS 7.5
CVE-2024-9394 [HIGH] Mozilla Foundation Security Advisory 2024-46: CVE-2024-9394
Mozilla Foundation Security Advisory 2024-46
CVE: CVE-2024-9394
Product: Firefox
Impact: high
Fixed in: Firefox 131
Mozilla
Mozilla Foundation Security Advisory 2024-48: CVE-2024-9394
vendor_mozilla·CVSS 7.5
CVE-2024-9394 [HIGH] Mozilla Foundation Security Advisory 2024-48: CVE-2024-9394
Mozilla Foundation Security Advisory 2024-48
CVE: CVE-2024-9394
Product: Firefox ESR
Impact: high
Fixed in: Firefox ESR 115.16
Mozilla
Mozilla Foundation Security Advisory 2024-50: CVE-2024-9394
vendor_mozilla·CVSS 7.5
CVE-2024-9394 [HIGH] Mozilla Foundation Security Advisory 2024-50: CVE-2024-9394
Mozilla Foundation Security Advisory 2024-50
CVE: CVE-2024-9394
Product: Thunderbird
Impact: high
Fixed in: Thunderbird 131
Mozilla
Mozilla Foundation Security Advisory 2024-47: CVE-2024-9394
vendor_mozilla·CVSS 7.5
CVE-2024-9394 [HIGH] Mozilla Foundation Security Advisory 2024-47: CVE-2024-9394
Mozilla Foundation Security Advisory 2024-47
CVE: CVE-2024-9394
Product: Firefox ESR
Impact: high
Fixed in: Firefox ESR 128.3
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://bugzilla.mozilla.org/show_bug.cgi?id=1918874https://www.mozilla.org/security/advisories/mfsa2024-46/https://www.mozilla.org/security/advisories/mfsa2024-47/https://www.mozilla.org/security/advisories/mfsa2024-48/https://www.mozilla.org/security/advisories/mfsa2024-49/https://www.mozilla.org/security/advisories/mfsa2024-50/https://lists.debian.org/debian-lts-announce/2024/10/msg00004.htmlhttps://lists.debian.org/debian-lts-announce/2024/10/msg00006.html
2024-10-01
Published