CVE-2024-1551

Set-Cookie response headers were being incorrectly honored in multipart HTTP responses. If an attacker could control the Content-Type response header, as well as control part of the response body, they could inject Set-Cookie response headers that would have been honored by the browser. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

History

02 Apr 2025, 20:12

Type Values Removed Values Added
CPE cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
First Time Mozilla firefox
Debian
Debian debian Linux
Mozilla thunderbird
Mozilla
References () https://bugzilla.mozilla.org/show_bug.cgi?id=1864385 - () https://bugzilla.mozilla.org/show_bug.cgi?id=1864385 - Exploit, Issue Tracking
References () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html - () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html - Third Party Advisory
References () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html - () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html - Third Party Advisory
References () https://www.mozilla.org/security/advisories/mfsa2024-05/ - () https://www.mozilla.org/security/advisories/mfsa2024-05/ - Vendor Advisory
References () https://www.mozilla.org/security/advisories/mfsa2024-06/ - () https://www.mozilla.org/security/advisories/mfsa2024-06/ - Vendor Advisory
References () https://www.mozilla.org/security/advisories/mfsa2024-07/ - () https://www.mozilla.org/security/advisories/mfsa2024-07/ - Vendor Advisory

21 Nov 2024, 08:50

Type Values Removed Values Added
References () https://bugzilla.mozilla.org/show_bug.cgi?id=1864385 - () https://bugzilla.mozilla.org/show_bug.cgi?id=1864385 -
References () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html - () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html -
References () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html - () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html -
References () https://www.mozilla.org/security/advisories/mfsa2024-05/ - () https://www.mozilla.org/security/advisories/mfsa2024-05/ -
References () https://www.mozilla.org/security/advisories/mfsa2024-06/ - () https://www.mozilla.org/security/advisories/mfsa2024-06/ -
References () https://www.mozilla.org/security/advisories/mfsa2024-07/ - () https://www.mozilla.org/security/advisories/mfsa2024-07/ -

19 Nov 2024, 22:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.1
CWE CWE-565

04 Mar 2024, 09:15

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html -
  • () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html -
Summary
  • (es) Los encabezados de respuesta Set-Cookie se respetaban incorrectamente en las respuestas HTTP de varias partes. Si un atacante pudiera controlar el encabezado de respuesta Content-Type, así como controlar parte del cuerpo de la respuesta, podría inyectar encabezados de respuesta Set-Cookie que el navegador habría respetado. Esta vulnerabilidad afecta a Firefox &lt; 123, Firefox ESR &lt; 115.8 y Thunderbird &lt; 115.8.

20 Feb 2024, 20:15

Type Values Removed Values Added
References
  • () https://www.mozilla.org/security/advisories/mfsa2024-07/ -
Summary (en) Set-Cookie response headers were being incorrectly honored in multipart HTTP responses. If an attacker could control the Content-Type response header, as well as control part of the response body, they could inject Set-Cookie response headers that would have been honored by the browser. This vulnerability affects Firefox < 123 and Firefox ESR < 115.8. (en) Set-Cookie response headers were being incorrectly honored in multipart HTTP responses. If an attacker could control the Content-Type response header, as well as control part of the response body, they could inject Set-Cookie response headers that would have been honored by the browser. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

20 Feb 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-20 14:15

Updated : 2025-04-02 20:12


NVD link : CVE-2024-1551

Mitre link : CVE-2024-1551

CVE.ORG link : CVE-2024-1551


JSON object : View

Products Affected

mozilla

  • thunderbird
  • firefox

debian

  • debian_linux
CWE
CWE-565

Reliance on Cookies without Validation and Integrity Checking