CVE-2024-11699

🗓️ 26 Nov 2024 13:34:02Reported by mozillaType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 337 Views

Memory safety bugs in Firefox and Thunderbir

Reporter	Title	Published	Views	Family All 270
FreeBSD	firefox -- multiple vulnerabilities	26 Nov 202400:00	–	freebsd
Tenable Nessus	AlmaLinux 8 : thunderbird (ALSA-2024:10591)	5 Dec 202400:00	–	nessus
Tenable Nessus	AlmaLinux 9 : thunderbird (ALSA-2024:10592)	5 Dec 202400:00	–	nessus
Tenable Nessus	AlmaLinux 9 : firefox (ALSA-2024:10702)	5 Dec 202400:00	–	nessus
Tenable Nessus	AlmaLinux 8 : firefox (ALSA-2024:10752)	5 Dec 202400:00	–	nessus
Tenable Nessus	Debian dla-3969 : thunderbird - security update	28 Nov 202400:00	–	nessus
Tenable Nessus	Debian dla-3971 : firefox-esr - security update	28 Nov 202400:00	–	nessus
Tenable Nessus	Debian dsa-5820 : firefox-esr - security update	27 Nov 202400:00	–	nessus
Tenable Nessus	Debian dsa-5821 : thunderbird - security update	27 Nov 202400:00	–	nessus
Tenable Nessus	Fedora 41 : thunderbird (2024-07f6b6766c)	29 Nov 202400:00	–	nessus

NVD

Vulners

Vulnrichment

Node

mozilla firefoxRange<128.5.0esr

mozilla firefoxRange<133.0

mozilla thunderbirdRange<128.5

mozilla thunderbirdRange129.0–133.0

[
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "133",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Firefox ESR",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "128.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Thunderbird",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "133",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Thunderbird",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "128.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.mozilla.org/buglist.cgi
mozilla	www.mozilla.org/security/advisories/mfsa2024-63/
mozilla	www.mozilla.org/security/advisories/mfsa2024-64/
mozilla	www.mozilla.org/security/advisories/mfsa2024-68/
mozilla	www.mozilla.org/security/advisories/mfsa2024-67/
lists	www.lists.debian.org/debian-lts-announce/2024/11/msg00029.html

03 Nov 2025 22:16Current

7.3High risk

Vulners AI Score7.3

CVSS 3.18.8

EPSS0.0012

SSVC

CWE-94