CVE-2024-1547 Information

Description

Through a series of API calls and redirects an attacker-controlled alert dialog could have been displayed on another website (with the victim website’s URL shown). This vulnerability affects Firefox < 123 Firefox ESR < 115.8 and Thunderbird < 115.8.

Reference

https://bugzilla.mozilla.org/show_bug.cgi?id=1877879 https://www.mozilla.org/security/advisories/mfsa2024-05/ https://www.mozilla.org/security/advisories/mfsa2024-06/ https://www.mozilla.org/security/advisories/mfsa2024-07/