Lucene search

K

[email protected]NVD:CVE-2024-2614

HistoryMar 19, 2024 - 12:15 p.m.

CVE-2024-2614

2024-03-1912:15:09

[email protected]

web.nvd.nist.gov

cve-2024-2614

memory corruption

arbitrary code execution

firefox

thunderbird

0.0004 Low

EPSS

Percentile

10.3%

Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

References

bugzilla.mozilla.org/buglist.cgi?bug_id=1685358%2C1861016%2C1880405%2C1881093

lists.debian.org/debian-lts-announce/2024/03/msg00022.html

lists.debian.org/debian-lts-announce/2024/03/msg00028.html

www.mozilla.org/security/advisories/mfsa2024-12/

www.mozilla.org/security/advisories/mfsa2024-13/

www.mozilla.org/security/advisories/mfsa2024-14/

0.0004 Low

EPSS

Percentile

10.3%

Related for NVD:CVE-2024-2614

ubuntucve1 cnvd1 cvelist1 cve1 debiancve1 alpinelinux1 veracode1 cgr1 redhatcve1 amazon1 nessus56 openvas21 oraclelinux6 redhat18 almalinux4 osv12 debian4 mageia2 rocky2 ubuntu2 centos2 kaspersky3 slackware2 mozilla3