CVE-2024-0741
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Jan 23, 2024
Updated: Feb 2, 2024
CWE ID 787
Summary
CVE-2024-0741 is a newly disclosed vulnerability that impacts Firefox versions below 122, Firefox ESR below 115.7, and Thunderbird below 115.7. The issue lies in ANGLE, an open-source rendering engine, where an out-of-bounds write occurs. An attacker could exploit this flaw to corrupt memory, potentially causing a crash. Such a crash could lead to arbitrary code execution, if an attacker manages to inject malicious code into the vulnerable memory area. This vulnerability represents a significant risk to users of affected browsers and email clients.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share