CVE-2024-6603
CVSS 3.1 Score 7.4 of 10 (high)
Details
Published Jul 9, 2024
Updated: Jul 16, 2024
CWE ID 823
Summary
CVE-2024-6603 is a memory corruption vulnerability that can occur in Firefox versions below 128 and Firefox ESR below 115.13, as well as Thunderbird versions below 115.13 and below 128. Under specific out-of-memory conditions, an allocation may fail, but the pointer would have already been marked as free. This issue can result in unintended code execution or crashes, posing a significant security risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Mozilla Firefox
Affected Vendors
- Mozilla