CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-0606

An attacker could execute unauthorized script on a legitimate site through UXSS using window.open() by opening a javascript URI leading to unauthorized actions within the user's loaded webpage. This vulnerability affects Focus for iOS < 122.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.1%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2024-0606

Mozilla » Firefox Focus » Version: 100.0

cpe:2.3:a:mozilla:firefox_focus:100.0
Mozilla » Firefox Focus » Version: 102.0

cpe:2.3:a:mozilla:firefox_focus:102.0
Mozilla » Firefox Focus » Version: 103.0

cpe:2.3:a:mozilla:firefox_focus:103.0
Mozilla » Firefox Focus » Version: 104.0

cpe:2.3:a:mozilla:firefox_focus:104.0
Mozilla » Firefox Focus » Version: 105.0

cpe:2.3:a:mozilla:firefox_focus:105.0
Mozilla » Firefox Focus » Version: 106.0

cpe:2.3:a:mozilla:firefox_focus:106.0
Mozilla » Firefox Focus » Version: 107.0

cpe:2.3:a:mozilla:firefox_focus:107.0
Mozilla » Firefox Focus » Version: 107.1

cpe:2.3:a:mozilla:firefox_focus:107.1
Mozilla » Firefox Focus » Version: 108.0

cpe:2.3:a:mozilla:firefox_focus:108.0
Mozilla » Firefox Focus » Version: 108.1

cpe:2.3:a:mozilla:firefox_focus:108.1
Mozilla » Firefox Focus » Version: 109.0

cpe:2.3:a:mozilla:firefox_focus:109.0
Mozilla » Firefox Focus » Version: 110.0

cpe:2.3:a:mozilla:firefox_focus:110.0
Mozilla » Firefox Focus » Version: 111.0

cpe:2.3:a:mozilla:firefox_focus:111.0
Mozilla » Firefox Focus » Version: 111.1

cpe:2.3:a:mozilla:firefox_focus:111.1
Mozilla » Firefox Focus » Version: 112.0

cpe:2.3:a:mozilla:firefox_focus:112.0
Mozilla » Firefox Focus » Version: 113.0

cpe:2.3:a:mozilla:firefox_focus:113.0
Mozilla » Firefox Focus » Version: 114.0

cpe:2.3:a:mozilla:firefox_focus:114.0
Mozilla » Firefox Focus » Version: 115.0

cpe:2.3:a:mozilla:firefox_focus:115.0
Mozilla » Firefox Focus » Version: 116.0

cpe:2.3:a:mozilla:firefox_focus:116.0
Mozilla » Firefox Focus » Version: 117.0

cpe:2.3:a:mozilla:firefox_focus:117.0
Mozilla » Firefox Focus » Version: 118.0

cpe:2.3:a:mozilla:firefox_focus:118.0
Mozilla » Firefox Focus » Version: 119.0

cpe:2.3:a:mozilla:firefox_focus:119.0
Mozilla » Firefox Focus » Version: 120.0

cpe:2.3:a:mozilla:firefox_focus:120.0
Mozilla » Firefox Focus » Version: 121.0

cpe:2.3:a:mozilla:firefox_focus:121.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-0606

Products

Pricing

Contact Us