← back
CVE-2024-10004

CVE-2024-10004

CVSS 9.1 CRITICALEPSS 0.4%CWE-1021
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.1EPSS 0.4%KEV nãoPoC Patch
Lifecycle
15 Oct 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS tab open could in some cases result in the padlock icon showing an HTTPS indicator incorrectly This vulnerability affects Firefox for iOS < 131.2.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected products
Mozilla · Firefox for iOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1904885https://www.mozilla.org/security/advisories/mfsa2024-54/