CVE-2024-8387

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 3, 2024
Updated: Sep 6, 2024
CWE ID 119
CWE ID 787

Summary

CVE-2024-8387 identifies critical memory safety vulnerabilities in Firefox versions 129, Firefox ESR 128.1, and Thunderbird 128.1, which could potentially allow an attacker to execute arbitrary code due to memory corruption. The affected products include Firefox versions prior to 130, Firefox ESR versions before 128.2, and Thunderbird versions below 128.2. Organizations using these software versions are at high risk as the vulnerabilities can be exploited remotely without any user interaction, impacting both confidentiality and integrity significantly. To remediate this issue, users are advised to update their applications to the latest versions available from Mozilla. The vulnerabilities have been rated with a base severity score of 9.8, indicating critical threat levels that necessitate immediate attention.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share