CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-9392

Medium Severity
SVRS
30/100
CVSSv3
9.8/10
EPSS
0.00161/1

CVE-2024-9392 is a critical vulnerability affecting Firefox and Thunderbird, potentially allowing arbitrary loading of cross-origin pages. This cross-origin issue arises from a compromised content process. The security flaw impacts Firefox versions less than 131, Firefox ESR versions less than 128.3 and 115.16, and Thunderbird versions less than 128.3 and 131. Despite a high CVSS score of 9.8, the SOCRadar Vulnerability Risk Score (SVRS) is 30, suggesting a lower level of immediate threat compared to vulnerabilities with SVRS scores above 80. However, because it is tagged "In The Wild", continuous monitoring is important. Exploitation could lead to unauthorized access to sensitive data or malicious code execution, making patching essential, particularly in environments where these applications are widely used. Ignoring this patch could open the door to significant security breaches.

TAGS
In The Wild
VECTOR STRING
CVSS:3.1
AV:N
AC:L
PR:N
UI:N
S:U
C:H
I:H
A:H
PUBLICATION DATE2024-10-01
LAST MODIFIED2025-04-04
Eye Icon
SOCRadar
AI Insight

Description

CVE-2024-9392 is a vulnerability in Firefox and Thunderbird that could allow a compromised content process to load cross-origin pages arbitrarily. This could lead to a variety of attacks, such as phishing, malware distribution, and data theft.

Key Insights

  • The SVRS for CVE-2024-9392 is 30, indicating that this is a moderate-severity vulnerability.
  • This vulnerability affects all versions of Firefox and Thunderbird prior to 131.
  • There are no known active exploits for this vulnerability.
  • CISA has not issued a warning about this vulnerability.

Mitigation Strategies

  • Update Firefox and Thunderbird to the latest version.
  • Use a browser extension that blocks cross-origin requests.
  • Be cautious when clicking on links in emails or on websites.
  • Use a strong password manager to protect your accounts.

Additional Information

If you have any additional questions about this incident, you can use the 'Ask to Analyst' feature, contact SOCRadar directly, or open a support ticket for more information.

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

CVE-2024-9392 | Mozilla Thunderbird cross-domain policy (Nessus ID 207987)
vuldb.com2025-03-09
CVE-2024-9392 | Mozilla Thunderbird cross-domain policy (Nessus ID 207987) | A vulnerability, which was classified as critical, has been found in Mozilla Thunderbird. Affected by this issue is some unknown functionality. The manipulation leads to permissive cross-domain policy with untrusted domains. This vulnerability is handled as CVE-2024-9392. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component
vuldb.com
rss
forum
news
CVE-2024-9392 | Mozilla Firefox cross-domain policy (Nessus ID 207987)
vuldb.com2025-03-09
CVE-2024-9392 | Mozilla Firefox cross-domain policy (Nessus ID 207987) | A vulnerability classified as critical was found in Mozilla Firefox. Affected by this vulnerability is an unknown functionality. The manipulation leads to permissive cross-domain policy with untrusted domains. This vulnerability is known as CVE-2024-9392. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
rss
vuldb.com
forum
news
USN-7056-1: Firefox vulnerabilities
2024-10-07
USN-7056-1: Firefox vulnerabilities | Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. (CVE-2024-9392, CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399, CVE-2024-9400, CVE-2024-9401, CVE-2024-9402, CVE-2024-9403) Masato Kinugawa discovered that Firefox did not properly validate javascript under the "resource://pdf.js" origin. An attacker could potentially exploit this issue to execute arbitrary javascript code and access
cve-2024-9396
cve-2024-9393
cve-2024-9397
cve-2024-9403

Social Media

CVE-2024-9392 A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox… https://t.co/jgazOIey9l
0
0
0

Affected Software

No affected software found for this CVE

References

ReferenceLink
SECURITY@MOZILLA.ORGhttps://bugzilla.mozilla.org/show_bug.cgi?id=1899154
SECURITY@MOZILLA.ORGhttps://bugzilla.mozilla.org/show_bug.cgi?id=1905843
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-46/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-47/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-48/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-49/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-50/
SECURITY@MOZILLA.ORGhttps://bugzilla.mozilla.org/show_bug.cgi?id=1899154
SECURITY@MOZILLA.ORGhttps://bugzilla.mozilla.org/show_bug.cgi?id=1905843
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-46/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-47/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-48/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-49/
SECURITY@MOZILLA.ORGhttps://www.mozilla.org/security/advisories/mfsa2024-50/

CWE Details

CWE IDCWE NameDescription
CWE-346Origin Validation ErrorThe software does not properly verify that the source of data or communication is valid.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence