Memory safety bugs present in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.
History

Tue, 12 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 06 Sep 2024 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2024-07-09T14:25:57.691Z

Updated: 2024-11-12T15:20:53.171Z

Reserved: 2024-07-09T14:12:56.509Z

Link: CVE-2024-6604

cve-icon Vulnrichment

Updated: 2024-08-01T21:41:03.940Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-09T15:15:12.597

Modified: 2024-11-21T09:49:58.507

Link: CVE-2024-6604

cve-icon Redhat

Severity : Important

Publid Date: 2024-07-09T00:00:00Z

Links: CVE-2024-6604 - Bugzilla