Lucene search
MozillaVULNRICHMENT:CVE-2024-8384HistorySep 03, 2024 - 12:32 p.m.
CVE-2024-8384
2024-09-0312:32:18
mozilla
github.com
12
javascript
garbage collector
vulnerability
firefox
memory corruption
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
44.1%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
total
The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*"
],
"vendor": "mozilla",
"product": "firefox",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "130",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*"
],
"vendor": "mozilla",
"product": "firefox_esr",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "128.2",
"versionType": "custom"
},
{
"status": "affected",
"version": "0",
"lessThan": "115.15",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]Related
debiancve
debiancve
CVE-2024-8384
2024-09-03 13:15:05
nvd
nvd
CVE-2024-8384
2024-09-03 13:15:05
alpinelinux
alpinelinux
CVE-2024-8384
2024-09-03 13:15:05
redhatcve
redhatcve
CVE-2024-8384
2024-09-03 15:43:10
cve
cve
CVE-2024-8384
2024-09-03 13:15:05
cvelist
cvelist
CVE-2024-8384
2024-09-03 12:32:18
osv
osv
CVE-2024-8384
2024-09-03 13:15:05
MozillaThunderbird-115.15.0-1.1 on GA media
2024-09-09 00:00:00
firefox-esr - security update
2024-09-04 00:00:00
nessus
nessus
Mozilla Thunderbird < 115.15
2024-09-06 00:00:00
Mozilla Thunderbird < 115.15
2024-09-06 00:00:00
Fedora 39 : thunderbird (2024-e77ad5f585)
2024-09-14 00:00:00
kaspersky
kaspersky
KLA73183 Multiple vulnerabilities in Mozilla Thunderbird
2024-09-03 00:00:00
KLA73123 Multiple vulnerabilities in Mozilla Firefox ESR
2024-09-03 00:00:00
KLA73124 Multiple vulnerabilities in Mozilla Firefox ESR
2024-09-03 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 115.15 — Mozilla
2024-09-03 00:00:00
Security Vulnerabilities fixed in Firefox ESR 115.15 — Mozilla
2024-09-03 00:00:00
Security Vulnerabilities fixed in Thunderbird 128.2 — Mozilla
2024-09-03 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3869-1)
2024-09-05 00:00:00
Debian: Security Advisory (DSA-5767-1)
2024-09-09 00:00:00
Debian: Security Advisory (DSA-5765-1)
2024-09-05 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2024-09-03 21:15:31
redhat
redhat
(RHSA-2024:6723) Important: thunderbird security update
2024-09-17 11:09:33
(RHSA-2024:6683) Important: thunderbird security update
2024-09-16 11:10:47
(RHSA-2024:6721) Important: thunderbird security update
2024-09-17 11:09:20
oraclelinux
oraclelinux
firefox security update
2024-09-18 00:00:00
firefox security update
2024-09-18 00:00:00
thunderbird security update
2024-09-18 00:00:00
rocky
rocky
firefox security update
2024-09-17 00:54:54
thunderbird security update
2024-09-17 00:54:54
ubuntu
ubuntu
Firefox vulnerabilities
2024-09-05 00:00:00
Thunderbird vulnerabilities
2024-09-09 00:00:00
freebsd
freebsd
firefox -- multiple vulnerabilities
2024-09-03 00:00:00
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
44.1%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-8384