CVE-2024-6602
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2024-6602 is a memory corruption vulnerability affecting Firefox versions below 128, Firefox ESR versions below 115.13, Thunderbird versions below 115.13, and Thunderbird versions below 128. This issue arises from a discrepancy between the memory allocator and deallocator, potentially leading to unintended code execution or data manipulation. The vulnerability could be exploited to execute arbitrary code or gain unauthorized access, posing a significant risk to users. It is recommended that affected versions be updated to their latest counterparts as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Mozilla Firefox
Affected Vendors
- Mozilla