Incorrect HTTPS Indicator in Firefox for iOS Prior to Version 131.2
CVE-2024-10004

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox For iOS
Vendor: CVE Published:; 15 October 2024

What is CVE-2024-10004?

Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS tab open could in some cases result in the padlock icon showing an HTTPS indicator incorrectly This vulnerability affects Firefox for iOS < 131.2.

Affected Version(s)

Firefox for iOS < 131.2

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1904885

https://www.mozilla.org/security/advisories/mfsa2024-54/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2024
Vulnerability Reserved
Oct 15, 2024

Credit

Erik van Straten

Mozilla

What is CVE-2024-10004?

Affected Version(s)

References

Timeline

Credit