CVE-2024-38312

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1878578", "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1878578", "tags": ["Issue Tracking", "Permissions Required"], "refsource": ""}, {"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1878578", "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1878578", "tags": ["Issue Tracking", "Permissions Required"], "refsource": ""}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-27/", "name": "https://www.mozilla.org/security/advisories/mfsa2024-27/", "tags": ["Vendor Advisory"], "refsource": ""}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-27/", "name": "https://www.mozilla.org/security/advisories/mfsa2024-27/", "tags": ["Vendor Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "When browsing private tabs, some data related to location history or webpage thumbnails could be persisted incorrectly within the sandboxed app bundle after app termination This vulnerability affects Firefox for iOS < 127."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-38312", "ASSIGNER": "security@mozilla.org"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}}, "publishedDate": "2024-06-13T20:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:iphone_os:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "127.0"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-03-19T15:15Z"}