FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

firefox -- Multiple vulnerabilities

Affected packages
		firefox	<	127,2

Details

VuXML ID	7e6e932f-617b-11ef-8a7d-b42e991fc52e
Discovery	2024-06-11
Entry	2024-08-23

security@mozilla.org reports:

CVE-2024-5697: A website was able to detect when a user took a screenshot of a page using the built-in Screenshot functionality in Firefox.

CVE-2024-5698: By manipulating the fullscreen feature while opening a data-list, an attacker could have overlaid a text box over the address bar. This could have led to user confusion and possible spoofing attacks.

[source]

References

CVE Name	CVE-2024-5697
CVE Name	CVE-2024-5698
URL	https://nvd.nist.gov/vuln/detail/CVE-2024-5697
URL	https://nvd.nist.gov/vuln/detail/CVE-2024-5698