Memory Safety Bugs Uncovered in Firefox 130, Some Could Lead to Code Execution
CVE-2024-9403

7.3HIGH

Key Information:

Vendor: Mozilla
Status: Firefox; Thunderbird
Vendor: CVE Published:; 1 October 2024

What is CVE-2024-9403?

A memory safety vulnerability exists in Firefox and Thunderbird versions prior to 131, potentially allowing for memory corruption. This could be exploited by an attacker to execute arbitrary code on an affected system. Users are urged to update to the latest versions to mitigate possible risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Firefox < 131

Thunderbird < 131

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1917807

https://www.mozilla.org/security/advisories/mfsa2024-46/

https://www.mozilla.org/security/advisories/mfsa2024-50/

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 1, 2024
Vulnerability Reserved
Oct 1, 2024

Credit

The Mozilla Fuzzing Team

JSON

Mozilla