CVE-2024-6611 Information

Description

A nested iframe triggering a cross-site navigation could send SameSite=Strict or Lax cookies. This vulnerability affects Firefox < 128.

Reference

https://bugzilla.mozilla.org/show_bug.cgi?id=1844827 https://www.mozilla.org/security/advisories/mfsa2024-29/