Lucene search
HistoryAug 06, 2024 - 1:15 p.m.
CVE-2024-7528
indexeddb
use-after-free
vulnerability
firefox
esr
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
30.4%
Incorrect garbage collection interaction in IndexedDB could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 128.1, and Thunderbird < 128.1.
Affected configurations
Node
mozillafirefoxRange<129.0
ORmozillafirefox_esrRange<128.1.0
ORmozillathunderbirdRange<128.1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mozilla | firefox | * | cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* |
| mozilla | firefox_esr | * | cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:* |
| mozilla | thunderbird | * | cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* |
Related
redhatcve
redhatcve
CVE-2024-7528
2024-08-07 16:08:57
debiancve
debiancve
CVE-2024-7528
2024-08-06 13:15:57
ubuntucve
ubuntucve
CVE-2024-7528
2024-08-06 00:00:00
wolfi
wolfi
CVE-2024-7528 vulnerabilities
2024-09-19 09:11:50
cvelist
cvelist
CVE-2024-7528
2024-08-06 12:38:14
vulnrichment
vulnrichment
CVE-2024-7528
2024-08-06 12:38:14
alpinelinux
alpinelinux
CVE-2024-7528
2024-08-06 13:15:57
cve
cve
CVE-2024-7528
2024-08-06 13:15:57
openvas
openvas
Mozilla Firefox ESR Security Update (mfsa_2024-35) - Mac OS X
2024-08-29 00:00:00
Mozilla Firefox ESR Security Update (mfsa_2024-35) - Windows
2024-08-29 00:00:00
Mozilla Firefox Security Update (mfsa_2024-33) - Mac OS X
2024-08-29 00:00:00
nessus
nessus
FreeBSD : firefox -- multiple vulnerabilities (5d7939f6-5989-11ef-9793-b42e991fc52e)
2024-08-14 00:00:00
RHEL 9 : thunderbird (RHSA-2024:5396)
2024-08-15 00:00:00
Oracle Linux 8 : thunderbird (ELSA-2024-5402)
2024-08-15 00:00:00
freebsd
freebsd
firefox -- multiple vulnerabilities
2024-08-06 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 128.1 — Mozilla
2024-08-06 00:00:00
Security Vulnerabilities fixed in Firefox ESR 128.1 — Mozilla
2024-08-06 00:00:00
Security Vulnerabilities fixed in Firefox 129 — Mozilla
2024-08-06 00:00:00
redhat
redhat
(RHSA-2024:5527) Important: thunderbird security update
2024-08-19 00:59:41
(RHSA-2024:5395) Important: thunderbird security update
2024-08-14 11:38:16
(RHSA-2024:5528) Important: thunderbird security update
2024-08-19 00:59:43
osv
osv
Important: thunderbird security update
2024-08-14 00:00:00
Important: thunderbird security update
2024-08-14 00:00:00
Important: firefox security update
2024-08-14 00:00:00
kaspersky
kaspersky
KLA71401 Multiple vulnerabilities in Mozilla Thunderbird
2024-08-06 00:00:00
KLA71399 Multiple vulnerabilities in Mozilla Firefox ESR
2024-08-06 00:00:00
KLA71397 Multiple vulnerabilities in Mozilla Firefox
2024-08-06 00:00:00
almalinux
almalinux
Important: thunderbird security update
2024-08-14 00:00:00
Important: thunderbird security update
2024-08-14 00:00:00
Important: firefox security update
2024-08-15 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2024-08-14 00:00:00
thunderbird security update
2024-08-14 00:00:00
firefox security update
2024-08-14 00:00:00
ubuntu
ubuntu
Firefox regressions
2024-08-21 00:00:00
Firefox vulnerabilities
2024-08-19 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
30.4%
Related for NVD:CVE-2024-7528