CVE-2024-11701

Reference Links

• https://bugzilla.mozilla.org/show_bug.cgi?id=1914797
• https://www.mozilla.org/en-US/security/advisories/mfsa2024-67/
• https://www.mozilla.org/en-US/security/advisories/mfsa2024-63/
• https://www.mozilla.org/security/advisories/mfsa2024-63/
• https://www.mozilla.org/security/advisories/mfsa2024-67/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11701
• https://nvd.nist.gov/vuln/detail/CVE-2024-11701
• https://launchpad.net/bugs/cve/CVE-2024-11701
• https://security-tracker.debian.org/tracker/CVE-2024-11701
• https://ubuntu.com/security/CVE-2024-11701
• https://www.mozilla.org/en-US/security/advisories/mfsa2024-63/#CVE-2024-11701

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2024-67
• MFSA2024-63

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2024-11691
• CVE-2024-11700
• CVE-2024-11692
• CVE-2024-11701
• CVE-2024-11702
• CVE-2024-11693
• CVE-2024-11694
• CVE-2024-11695
• CVE-2024-11696
• CVE-2024-11697
• CVE-2024-11704
• CVE-2024-11698
• CVE-2024-11705
• CVE-2024-11706
• CVE-2024-11708
• CVE-2024-11699
• CVE-2024-11703

Frequently Asked Questions

• What is the severity of CVE-2024-11701?

  CVE-2024-11701 has not been assigned a specific severity rating, but it may pose user confusion and risk of spoofing attacks.

• How do I fix CVE-2024-11701?

  To fix CVE-2024-11701, update Mozilla Thunderbird or Firefox to version 134 or later.

• What specific versions are affected by CVE-2024-11701?

  CVE-2024-11701 affects Mozilla Thunderbird and Firefox versions prior to 133.

• Can CVE-2024-11701 lead to phishing attacks?

  Yes, CVE-2024-11701 could potentially lead to phishing attacks due to incorrect domain display in the address bar.

• Is there a workaround for CVE-2024-11701 while waiting for a patch?

  There is currently no specific workaround recommended for CVE-2024-11701, so upgrading the software is advised.