Lucene search

HistoryAug 14, 2024 - 12:00 a.m.

GLSA-202408-02 : Mozilla Firefox: Multiple Vulnerabilities

2024-08-1400:00:00

www.tenable.com

mozilla firefox

multiple vulnerabilities

gentoo linux security advisory

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

Low

EPSS

0.001

Percentile

39.7%

JSON

The remote host is affected by the vulnerability described in GLSA-202408-02 (Mozilla Firefox: Multiple Vulnerabilities)

Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers     referenced below for details.

Tenable has extracted the preceding description block directly from the Gentoo Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
#
# (C) Tenable, Inc.
#
# @NOAGENT@
#
# The descriptive text and package checks in this plugin were
# extracted from Gentoo Linux Security Advisory GLSA 202408-02.
#
# The advisory text is Copyright (C) 2001-2021 Gentoo Foundation, Inc.
# and licensed under the Creative Commons - Attribution / Share Alike
# license. See http://creativecommons.org/licenses/by-sa/3.0/
#

include('compat.inc');

if (description)
{
  script_id(205525);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/09/16");

  script_cve_id(
    "CVE-2024-2609",
    "CVE-2024-3302",
    "CVE-2024-3853",
    "CVE-2024-3854",
    "CVE-2024-3855",
    "CVE-2024-3856",
    "CVE-2024-3857",
    "CVE-2024-3858",
    "CVE-2024-3859",
    "CVE-2024-3860",
    "CVE-2024-3861",
    "CVE-2024-3862",
    "CVE-2024-3864",
    "CVE-2024-3865",
    "CVE-2024-4764",
    "CVE-2024-4765",
    "CVE-2024-4766",
    "CVE-2024-4771",
    "CVE-2024-4772",
    "CVE-2024-4773",
    "CVE-2024-4774",
    "CVE-2024-4775",
    "CVE-2024-4776",
    "CVE-2024-4778",
    "CVE-2024-5689",
    "CVE-2024-5693",
    "CVE-2024-5694",
    "CVE-2024-5695",
    "CVE-2024-5696",
    "CVE-2024-5697",
    "CVE-2024-5698",
    "CVE-2024-5699",
    "CVE-2024-5700",
    "CVE-2024-5701",
    "CVE-2024-5702"
  );

  script_name(english:"GLSA-202408-02 : Mozilla Firefox: Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"");
  script_set_attribute(attribute:"description", value:
"The remote host is affected by the vulnerability described in GLSA-202408-02 (Mozilla Firefox: Multiple Vulnerabilities)

    Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers
    referenced below for details.

Tenable has extracted the preceding description block directly from the Gentoo Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://security.gentoo.org/glsa/202408-02");
  script_set_attribute(attribute:"see_also", value:"https://bugs.gentoo.org/show_bug.cgi?id=930380");
  script_set_attribute(attribute:"see_also", value:"https://bugs.gentoo.org/show_bug.cgi?id=932374");
  script_set_attribute(attribute:"see_also", value:"https://bugs.gentoo.org/show_bug.cgi?id=935550");
  script_set_attribute(attribute:"solution", value:
"All Mozilla Firefox binary users should upgrade to the latest version:

          # emerge --sync
          # emerge --ask --oneshot --verbose >=www-client/firefox-bin-127.0:rapid
        
All Mozilla Firefox users should upgrade to the latest version:

          # emerge --sync
          # emerge --ask --oneshot --verbose >=www-client/firefox-127.0:rapid
        
All Mozilla Firefox ESR users should upgrade to the latest version:

          # emerge --sync
          # emerge --ask --oneshot --verbose >=www-client/firefox-115.12.0:esr
        
All Mozilla Firefox ESR binary users should upgrade to the latest version:

          # emerge --sync
          # emerge --ask --oneshot --verbose >=www-client/firefox-bin-115.12.0:esr");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-5695");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/03/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/08/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/08/14");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:firefox");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:firefox-bin");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Gentoo Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list");

  exit(0);
}
include('qpkg.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item('Host/Gentoo/release')) audit(AUDIT_OS_NOT, 'Gentoo');
if (!get_kb_item('Host/Gentoo/qpkg-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var flag = 0;

var packages = [
  {
    'name' : 'www-client/firefox',
    'unaffected' : make_list("ge 115.12.0", "lt 115.0.0"),
    'vulnerable' : make_list("lt 115.12.0")
  },
  {
    'name' : 'www-client/firefox',
    'unaffected' : make_list("ge 127.0", "lt 116.0.0"),
    'vulnerable' : make_list("lt 127.0")
  },
  {
    'name' : 'www-client/firefox-bin',
    'unaffected' : make_list("ge 115.12.0", "lt 115.0.0"),
    'vulnerable' : make_list("lt 115.12.0")
  },
  {
    'name' : 'www-client/firefox-bin',
    'unaffected' : make_list("ge 127.0", "lt 116.0.0"),
    'vulnerable' : make_list("lt 127.0")
  }
];

foreach var package( packages ) {
  if (isnull(package['unaffected'])) package['unaffected'] = make_list();
  if (isnull(package['vulnerable'])) package['vulnerable'] = make_list();
  if (qpkg_check(package: package['name'] , unaffected: package['unaffected'], vulnerable: package['vulnerable'])) flag++;
}

# This plugin has a different number of unaffected and vulnerable versions for
# one or more packages. To ensure proper detection, a separate line should be 
# used for each fixed/vulnerable version pair.

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : qpkg_report_get()
  );
  exit(0);
}
else
{
  qpkg_tests = list_uniq(qpkg_tests);
  var tested = qpkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'Mozilla Firefox');
}

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2609

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3302

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3853

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3854

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3855

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3856

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3857

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3858

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3859

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3860

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3861

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3862

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3864

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3865

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4764

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4765

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4766

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4771

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4772

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4773

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4774

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4775

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4776

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4778

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5689

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5694

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5695

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5697

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5698

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5699

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5701

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702

bugs.gentoo.org/show_bug.cgi?id=930380

bugs.gentoo.org/show_bug.cgi?id=932374

bugs.gentoo.org/show_bug.cgi?id=935550

security.gentoo.org/glsa/202408-02

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

Low

EPSS

0.001

Percentile

39.7%

JSON

Related for GENTOO_GLSA-202408-02.NASL