CVE-2024-9402

Summary

CVE-2024-9402 identifies critical memory safety vulnerabilities found in Firefox versions 130, Firefox ESR 128.2, and Thunderbird 128.2, which could potentially allow attackers to execute arbitrary code due to memory corruption issues. The affected products include Firefox (<131), Firefox ESR (<128.3), and Thunderbird (<128.3). To mitigate this vulnerability, users should upgrade to the latest versions of these applications as soon as possible. The risk posed by this vulnerability is significant, with a CVSS base score of 9.8 indicating high potential impact on confidentiality, integrity, and availability of systems. Exploitation can occur over the network without user interaction or special privileges, highlighting the urgency for remediation in organizational environments.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.