CVE-2024-6602

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 9, 2024
Updated: Jul 16, 2024

Summary

CVE-2024-6602 is a memory corruption vulnerability affecting Firefox versions below 128, Firefox ESR versions below 115.13, Thunderbird versions below 115.13, and Thunderbird versions below 128. This issue arises from a discrepancy between the memory allocator and deallocator, potentially leading to unintended code execution or data manipulation. The vulnerability could be exploited to execute arbitrary code or gain unauthorized access, posing a significant risk to users. It is recommended that affected versions be updated to their latest counterparts as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share