When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

References

bugzilla.mozilla.org/show_bug.cgi?id=1843752

lists.debian.org/debian-lts-announce/2024/03/msg00000.html

lists.debian.org/debian-lts-announce/2024/03/msg00001.html

www.mozilla.org/security/advisories/mfsa2024-05/

www.mozilla.org/security/advisories/mfsa2024-06/

www.mozilla.org/security/advisories/mfsa2024-07/

cnvd 1

ubuntucve 1

cvelist 1

alpinelinux 1

cgr 1

nvd 1

redhatcve 1

veracode 1

debiancve 1

cve 1

nessus 59

openvas 25

amazon 1

oraclelinux 6

centos 2

redhat 18

almalinux 4

osv 12

debian 4

slackware 2

rocky 1

kaspersky 3

mozilla 3

mageia 2

ubuntu 3

gentoo 2

cnvd

Mozilla Firefox Out-of-Bounds Read Vulnerability (CNVD-2024-12552)

2024-03-01 00:00:00

ubuntucve

CVE-2024-1546

2024-02-20 00:00:00

cvelist

CVE-2024-1546

2024-02-20 13:21:34

alpinelinux

CVE-2024-1546

2024-02-20 14:15:08

cgr

CVE-2024-1546 vulnerabilities

2024-05-19 03:07:16

nvd

CVE-2024-1546

2024-02-20 14:15:08

redhatcve

CVE-2024-1546

2024-02-21 16:36:35

veracode

Out-of-Bounds Memory Read

2024-02-22 03:43:21

debiancve

CVE-2024-1546

2024-02-20 14:15:08

cve

CVE-2024-1546

2024-02-20 14:15:08

nessus

Amazon Linux 2 : thunderbird (ALAS-2024-2477)

2024-03-05 00:00:00

Amazon Linux 2 : firefox (ALASFIREFOX-2024-022)

2024-03-06 00:00:00

Mozilla Thunderbird < 115.8

2024-02-20 00:00:00

openvas

Mozilla Firefox ESR Security Update (mfsa_2024-05_2024-07) - Mac OS X

2024-02-21 00:00:00

Mozilla Thunderbird Security Update (mfsa_2023-53_2023-56) - Windows

2024-02-21 00:00:00

Mozilla Firefox ESR Security Update (mfsa_2024-05_2024-07) - Windows

2024-02-21 00:00:00

amazon

Important: thunderbird

2024-02-29 10:03:00

oraclelinux

thunderbird security update

2024-02-27 00:00:00

thunderbird security update

2024-02-27 00:00:00

thunderbird security update

2024-02-26 00:00:00

centos

thunderbird security update

2024-02-29 15:09:00

firefox security update

2024-02-29 15:08:24

redhat

(RHSA-2024:0957) Important: thunderbird security update

2024-02-26 00:56:03

(RHSA-2024:0958) Important: thunderbird security update

2024-02-26 00:56:06

(RHSA-2024:0983) Important: firefox security update

2024-02-26 09:32:28

almalinux

Important: thunderbird security update

2024-02-26 00:00:00

Important: firefox security update

2024-02-26 00:00:00

Important: firefox security update

2024-02-22 00:00:00

osv

thunderbird - security update

2024-03-04 00:00:00

Important: thunderbird security update

2024-02-26 00:00:00

firefox-esr - security update

2024-03-04 00:00:00

debian

[SECURITY] [DSA 5630-1] thunderbird security update

2024-02-23 18:00:41

[SECURITY] [DLA 3748-1] thunderbird security update

2024-03-04 07:54:14

[SECURITY] [DSA 5627-1] firefox-esr security update

2024-02-21 17:26:21

slackware

[slackware-security] mozilla-thunderbird

2024-02-21 20:04:41

[slackware-security] mozilla-firefox

2024-02-20 18:47:43

rocky

firefox security update

2024-03-12 15:41:47

kaspersky

KLA64090 Multiple vulnerabilities in Mozilla Thunderbird

2024-02-20 00:00:00

KLA64089 Multiple vulnerabilities in Mozilla Firefox ESR

2024-02-20 00:00:00

KLA64088 Multiple vulnerabilities in Mozilla Firefox

2024-02-20 00:00:00

mozilla

Security Vulnerabilities fixed in Thunderbird 115.8 — Mozilla

2024-02-20 00:00:00

Security Vulnerabilities fixed in Firefox ESR 115.8 — Mozilla

2024-02-20 00:00:00

Security Vulnerabilities fixed in Firefox 123 — Mozilla

2024-02-20 00:00:00

mageia

Updated thunderbird packages fix security vulnerabilities

2024-02-27 04:21:38

Updated rootcerts, nss and firefox packages fix security vulnerabilities

2024-02-27 04:08:24

ubuntu

Firefox vulnerabilities

2024-02-22 00:00:00

Firefox regressions

2024-03-06 00:00:00

Thunderbird vulnerabilities

2024-03-04 00:00:00

gentoo

Mozilla Firefox: Multiple Vulnerabilities

2024-05-05 00:00:00

Mozilla Thunderbird: Multiple Vulnerabilities

2024-05-12 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for PRION:CVE-2024-1546