CVE-2024-8900

Reference Links

• https://bugzilla.mozilla.org/show_bug.cgi?id=1872841
• https://www.mozilla.org/en-US/security/advisories/mfsa2024-33/
• https://www.mozilla.org/security/advisories/mfsa2024-33/
• https://www.mozilla.org/security/advisories/mfsa2024-47/
• https://www.mozilla.org/security/advisories/mfsa2024-49/
• https://www.mozilla.org/en-US/security/advisories/mfsa2024-47/
• https://www.mozilla.org/en-US/security/advisories/mfsa2024-49/

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2024-49
• MFSA2024-33
• MFSA2024-47

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2024-9392
• CVE-2024-9393
• CVE-2024-9394
• CVE-2024-8900
• CVE-2024-9396
• CVE-2024-9397
• CVE-2024-9398
• CVE-2024-9399
• CVE-2024-9400
• CVE-2024-9401
• CVE-2024-9402
• CVE-2024-7518
• CVE-2024-7519
• CVE-2024-7520
• CVE-2024-7521
• CVE-2024-7522
• CVE-2024-7523
• CVE-2024-7524
• CVE-2024-7525
• CVE-2024-7526
• CVE-2024-7527
• CVE-2024-7528
• CVE-2024-7529
• CVE-2024-7530
• CVE-2024-7531

Frequently Asked Questions

• What is the severity of CVE-2024-8900?

  CVE-2024-8900 is considered a medium severity vulnerability due to its potential to compromise user privacy.

• How do I fix CVE-2024-8900?

  To fix CVE-2024-8900, update Mozilla Firefox, Thunderbird, or Firefox ESR to the latest version recommended by Mozilla.

• What versions are affected by CVE-2024-8900?

  CVE-2024-8900 affects Mozilla Firefox versions prior to 129, Thunderbird versions prior to 128.3, and Firefox ESR prior to 128.3.

• What type of attack does CVE-2024-8900 enable?

  CVE-2024-8900 allows attackers to write data to a user's clipboard without their knowledge during specific navigational events.

• Is there a workaround for CVE-2024-8900?

  There is no known workaround for CVE-2024-8900; the best mitigation is to update to the latest version of the affected software.