CVE-2024-11691
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Nov 26, 2024
Updated: Dec 13, 2024
Summary
CVE-2024-11691 is a vulnerability affecting certain WebGL operations on Apple silicon M series devices. This issue, which lies in Apple's GPU driver, could result in an out-of-bounds write and memory corruption. Consequently, applications using affected versions of Firefox (<133, Firefox ESR < 128.5, and Firefox ESR < 115.18), as well as Thunderbird (<133, Thunderbird < 128.5, and Thunderbird < 115.18), running on Apple M series hardware are vulnerable. Other platforms were not impacted by this flaw.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share