Firefox Vulnerability: Incorrect Checking of Cookie Prefixes
CVE-2024-5699

Currently unrated

Key Information:

Vendor

Mozilla
Status
Firefox
Vendor
CVE Published:
11 June 2024

What is CVE-2024-5699?

In violation of spec, cookie prefixes such as __Secure were being ignored if they were not correctly capitalized - by spec they should be checked with a case-insensitive comparison. This could have resulted in the browser not correctly honoring the behaviors specified by the prefix. This vulnerability affects Firefox < 127.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Firefox < 127

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1891349
https://www.mozilla.org/security/advisories/mfsa2024-25/

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Konstantin PreiĂźer
JSON
.