Lucene search

K
cve[email protected]CVE-2024-4764
HistoryMay 14, 2024 - 6:15 p.m.

CVE-2024-4764

2024-05-1418:15:12
web.nvd.nist.gov
39
10
firefox
webrtc
audio input
use-after-free
vulnerability

5.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

8.9%

Multiple WebRTC threads could have claimed a newly connected audio input leading to use-after-free. This vulnerability affects Firefox < 126.

Affected configurations

Vulners
Node
mozillafirefoxRange126
VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "126",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Social References

More

5.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

8.9%