CVE-2024-4767

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-4767

CGA ID

CGA-fc9v-82m6-vp25

Severity

Unknown

Description

If the browser.privatebrowsing.autostart preference is enabled, IndexedDB files were not properly deleted when the window was closed. This preference is disabled by default in Firefox. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.

References

https://images.chainguard.dev/security/CGA-fc9v-82m6-vp25
https://github.com/advisories/GHSA-fffc-4hjp-2r9v
https://bugzilla.mozilla.org/show_bug.cgi?id=1878577
https://www.mozilla.org/security/advisories/mfsa2024-21/
https://www.mozilla.org/security/advisories/mfsa2024-22/
https://www.mozilla.org/security/advisories/mfsa2024-23/
https://lists.debian.org/debian-lts-announce/2024/05/msg00010.html
https://lists.debian.org/debian-lts-announce/2024/05/msg00012.html
https://security-tracker.debian.org/tracker/CVE-2024-4767

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2024-4767

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources