CVE-2024-1551

Summary

Set-Cookie response headers were being incorrectly honored in multipart HTTP responses. If an attacker could control the Content-Type response header, as well as control part of the response body, they could inject Set-Cookie response headers that would have been honored by the browser. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 123affected
MozillaFirefox ESRunspecified < 115.8affected
MozillaThunderbirdunspecified < 115.8affected

Weaknesses

  • Multipart HTTP Responses would accept the Set-Cookie header in response parts

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References