CVE-2024-8389

Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 130.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mozilla:firefox:129.0:*:*:*:*:*:*:*

History

04 Sep 2024, 15:50

Type Values Removed Values Added
CPE cpe:2.3:a:mozilla:firefox:129.0:*:*:*:*:*:*:*
References () https://bugzilla.mozilla.org/buglist.cgi?bug_id=1907230%2C1909367 - () https://bugzilla.mozilla.org/buglist.cgi?bug_id=1907230%2C1909367 - Broken Link
References () https://www.mozilla.org/security/advisories/mfsa2024-39/ - () https://www.mozilla.org/security/advisories/mfsa2024-39/ - Vendor Advisory
Summary
  • (es) Errores de seguridad de memoria presentes en Firefox 129. Algunos de estos errores mostraron evidencia de corrupción de memoria y suponemos que con suficiente esfuerzo algunos de ellos podrían haber sido explotados para ejecutar código arbitrario. Esta vulnerabilidad afecta a Firefox &lt; 130.
CWE CWE-787
First Time Mozilla firefox
Mozilla

03 Sep 2024, 16:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-119

03 Sep 2024, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-03 13:15

Updated : 2024-09-04 15:50


NVD link : CVE-2024-8389

Mitre link : CVE-2024-8389

CVE.ORG link : CVE-2024-8389


JSON object : View

Products Affected

mozilla

  • firefox
CWE
CWE-787

Out-of-bounds Write

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer