Mozilla Firefox Vulnerability: Use-After-Free Due to Object Transplant

CVE-2024-5688

Currently unrated 🤨

Key Information

Vendor: Mozilla
Status: Firefox; Firefox Esr; Thunderbird
Vendor: CVE Published:; 11 June 2024

Summary

If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.

Affected Version(s)

Firefox < 127

Firefox ESR < 115.12

Thunderbird < 115.12

Timeline

Vulnerability published.
Jun 11, 2024
Vulnerability Reserved.
Jun 6, 2024

Collectors

NVD DatabaseMitre Database

Credit

Lukas Bernhard