CVE-2024-11699

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 26, 2024
Updated: Nov 27, 2024
CWE ID 94

Summary

CVE-2024-11699 is a memory safety bug affecting Firefox version 132 and Firefox ESR 128.4, as well as Thunderbird 128.4. These vulnerabilities, numbering unspecified, exhibit signs of memory corruption and potentially allow an attacker to execute arbitrary code. Firefox versions prior to 133 and Firefox ESR versions prior to 128.5, as well as Thunderbird versions below 133 and Thunderbird versions below 128.5, are at risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Mozilla Thunderbird
  • Mozilla Firefox
  • Mozilla Firefox ESR

Affected Vendors

  • Mozilla