CVE-2024-11701

Summary

The incorrect domain may have been displayed in the address bar during an interrupted navigation attempt. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 133 and Thunderbird < 133.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 133affected
MozillaThunderbirdunspecified < 133affected

Weaknesses

  • Misleading Address Bar State During Navigation Interruption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References