CVE-2024-5697

A website was able to detect when a user took a screenshot of a page using the built-in Screenshot functionality in Firefox. This vulnerability affects Firefox < 127.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=1414937	Issue Tracking Permissions Required
https://www.mozilla.org/security/advisories/mfsa2024-25/	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

History

23 Aug 2024, 15:53

Type	Values Removed	Values Added
First Time		Mozilla firefox Mozilla
CPE		cpe:2.3:a:mozilla:firefox::::::::
References	~~() https://bugzilla.mozilla.org/show_bug.cgi?id=1414937 -~~	() https://bugzilla.mozilla.org/show_bug.cgi?id=1414937 - Issue Tracking, Permissions Required
References	~~() https://www.mozilla.org/security/advisories/mfsa2024-25/ -~~	() https://www.mozilla.org/security/advisories/mfsa2024-25/ - Vendor Advisory
CWE		NVD-CWE-noinfo
Summary		(es) Un sitio web pudo detectar cuando un usuario tomó una captura de pantalla de una página utilizando la función de captura de pantalla incorporada en Firefox. Esta vulnerabilidad afecta a Firefox < 127.
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.3

11 Jun 2024, 13:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-11 13:15

Updated : 2024-08-23 15:53

NVD link : CVE-2024-5697

Mitre link : CVE-2024-5697

CVE.ORG link : CVE-2024-5697

JSON object : View

Products Affected

mozilla

firefox

CWE

NVD-CWE-noinfo

4.3 /10