Wind River Support Network

HomeDefectsLIN1023-4302
Not to be fixed

LIN1023-4302 : Security Advisory - firefox - CVE-2024-2609

Created: Mar 19, 2024    Updated: Mar 25, 2024
Resolved Date: Mar 24, 2024
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

The permission prompt input delay could have expired while the window is not in focus, which made the prompt vulnerable to clickjacking by malicious websites. This vulnerability affects Firefox < 124.

CREATE(Triage):(User=admin) CVE-2024-2609 (https://nvd.nist.gov/vuln/detail/CVE-2024-2609)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube