Lucene search
HistoryApr 16, 2024 - 4:15 p.m.
CVE-2024-3853
javascript realm
garbage collection
firefox 125
nvd
cve-2024-3853
7.5 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
A use-after-free could result if a JavaScript realm was in the process of being initialized when a garbage collection started. This vulnerability affects Firefox < 125.
Affected configurations
Node
mozillafirefoxRange≤125
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "125",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
debiancve
debiancve
CVE-2024-3853
2024-04-16 16:15:08
ubuntucve
ubuntucve
CVE-2024-3853
2024-04-16 00:00:00
veracode
veracode
Use-After-Free
2024-04-19 01:24:09
cvelist
cvelist
CVE-2024-3853
2024-04-16 15:14:05
vulnrichment
vulnrichment
CVE-2024-3853
2024-04-16 15:14:05
nvd
nvd
CVE-2024-3853
2024-04-16 16:15:08
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2024-18) - Linux
2024-04-18 00:00:00
Mozilla Firefox Security Update (mfsa_2024-18) - Mac OS X
2024-04-17 00:00:00
Ubuntu: Security Advisory (USN-6747-1)
2024-04-25 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2024-04-24 00:00:00
Firefox regressions
2024-05-02 00:00:00
osv
osv
firefox vulnerabilities
2024-04-24 04:43:24
firefox regressions
2024-05-02 03:20:32
nessus
nessus
Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6747-1)
2024-04-24 00:00:00
Fedora 38 : firefox (2024-966e16bfa3)
2024-04-21 00:00:00
Mozilla Firefox < 125.0
2024-04-16 00:00:00
kaspersky
kaspersky
KLA65639 Multiple vulnerabilities in Mozilla Firefox
2024-04-16 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 125 — Mozilla
2024-04-16 00:00:00
7.5 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
Related for CVE-2024-3853