CVE-2024-5695

If an out-of-memory condition occurs at a specific point using allocations in the probabilistic heap checker, an assertion could have been triggered, and in rarer situations, memory corruption could have occurred. This vulnerability affects Firefox < 127.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=1895579	Issue Tracking Permissions Required
https://www.mozilla.org/security/advisories/mfsa2024-25/	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

History

13 Sep 2024, 18:31

Type	Values Removed	Values Added
First Time		Mozilla Mozilla firefox
CWE		CWE-787
References	~~() https://bugzilla.mozilla.org/show_bug.cgi?id=1895579 -~~	() https://bugzilla.mozilla.org/show_bug.cgi?id=1895579 - Issue Tracking, Permissions Required
References	~~() https://www.mozilla.org/security/advisories/mfsa2024-25/ -~~	() https://www.mozilla.org/security/advisories/mfsa2024-25/ - Vendor Advisory
Summary		(es) Si se produce una condición de falta de memoria en un punto específico utilizando asignaciones en el verificador de montón probabilístico, se podría haber activado una aserción y, en situaciones más raras, se podría haber producido corrupción de la memoria. Esta vulnerabilidad afecta a Firefox < 127.
CPE		cpe:2.3:a:mozilla:firefox::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8

11 Jun 2024, 13:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-11 13:15

Updated : 2024-10-30 19:35

NVD link : CVE-2024-5695

Mitre link : CVE-2024-5695

CVE.ORG link : CVE-2024-5695

JSON object : View

Products Affected

mozilla

firefox

CWE

CWE-787

Out-of-bounds Write

{"id": "CVE-2024-5695", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-06-11T13:15:51.017", "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1895579", "tags": ["Issue Tracking", "Permissions Required"], "source": "security@mozilla.org"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-25/", "tags": ["Vendor Advisory"], "source": "security@mozilla.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-787"}]}], "descriptions": [{"lang": "en", "value": "If an out-of-memory condition occurs at a specific point using allocations in the probabilistic heap checker, an assertion could have been triggered, and in rarer situations, memory corruption could have occurred. This vulnerability affects Firefox < 127."}, {"lang": "es", "value": "Si se produce una condici\u00f3n de falta de memoria en un punto espec\u00edfico utilizando asignaciones en el verificador de mont\u00f3n probabil\u00edstico, se podr\u00eda haber activado una aserci\u00f3n y, en situaciones m\u00e1s raras, se podr\u00eda haber producido corrupci\u00f3n de la memoria. Esta vulnerabilidad afecta a Firefox < 127."}], "lastModified": "2024-10-30T19:35:31.650", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CF5E7C8-8673-4B56-AF92-44C08B086E02", "versionEndExcluding": "127.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@mozilla.org"}