CVE-2024-9400

2024-10-0116:15:11

Debian Security Bug Tracker

security-tracker.debian.org

cve-2024-9400

memory corruption

unix

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

JSON

A potential memory corruption vulnerability could be triggered if an a …

OSVersionArchitecturePackageVersionFilename
Debian999allfirefox<= 130.0.1-1firefox_130.0.1-1_all.deb
Debian12allthunderbird<= 1:115.12.0-1~deb12u1thunderbird_1:115.12.0-1~deb12u1_all.deb
Debian11allthunderbird<= 1:115.12.0-1~deb11u1thunderbird_1:115.12.0-1~deb11u1_all.deb
Debian999allthunderbird<= 1:128.2.3esr-1thunderbird_1:128.2.3esr-1_all.deb
Debian13allthunderbird<= 1:128.2.0esr-1thunderbird_1:128.2.0esr-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	999	all	firefox	<= 130.0.1-1	firefox_130.0.1-1_all.deb
Debian	12	all	thunderbird	<= 1:115.12.0-1~deb12u1	thunderbird_1:115.12.0-1~deb12u1_all.deb
Debian	11	all	thunderbird	<= 1:115.12.0-1~deb11u1	thunderbird_1:115.12.0-1~deb11u1_all.deb
Debian	999	all	thunderbird	<= 1:128.2.3esr-1	thunderbird_1:128.2.3esr-1_all.deb
Debian	13	all	thunderbird	<= 1:128.2.0esr-1	thunderbird_1:128.2.0esr-1_all.deb