CVE-2024-8383 - Firefox Unapproved URL Handler Unauthorized Execution

2 months ago 20
ARTICLE AD BOX
CVE ID : CVE-2024-8383
Published : Sept. 3, 2024, 1:15 p.m. | 54 minutes ago
Description : Firefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does not support. It did not ask before doing so for the Usenet-related schemes news: and snews:. Since most operating systems don't have a trusted newsreader installed by default, an unscrupulous program that the user downloaded could register itself as a handler. The website that served the application download could then launch that application at will This vulnerability affects Firefox Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article