When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. This may surprise the user and potentially direct them to unwanted content. This vulnerability affects Firefox for iOS < 129.
References
Link | Resource |
---|---|
https://bugzilla.mozilla.org/show_bug.cgi?id=1837916 | Exploit Issue Tracking |
https://www.mozilla.org/security/advisories/mfsa2024-36/ |
Configurations
History
06 Aug 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | (en) When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. This may surprise the user and potentially direct them to unwanted content. This vulnerability affects Firefox for iOS < 129. |
09 Feb 2024, 16:38
Type | Values Removed | Values Added |
---|---|---|
References | () https://bugzilla.mozilla.org/show_bug.cgi?id=1837916 - Exploit, Issue Tracking | |
CPE | cpe:2.3:a:mozilla:firefox:-:*:*:*:*:iphone_os:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
CWE | CWE-601 | |
First Time |
Mozilla firefox
Mozilla |
05 Feb 2024, 18:25
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-05 17:15
Updated : 2024-10-27 23:35
NVD link : CVE-2024-0953
Mitre link : CVE-2024-0953
CVE.ORG link : CVE-2024-0953
JSON object : View
Products Affected
mozilla
- firefox
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')