CVE-2024-0751

CVSS v3.1 8.8 (High)

EPSS 0.08 % (34^th)

Affected Products 4

Advisories 35

A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.

Weaknesses

CWE-269: Improper Privilege Management

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2024-01-23 14:15:38
(7 months ago)
Updated Date: 2024-02-02 17:14:17
(7 months ago)

Affected Products

Debian

Debian Linux

Mozilla

Firefox
Firefox Esr
Thunderbird

Configuration #1

	CPE23	Up To
Mozilla Firefox prior 122.0 version	cpe:2.3:a:mozilla:firefox	< 122.0
Mozilla Firefox Esr prior 115.7 version	cpe:2.3:a:mozilla:firefox_esr	< 115.7
Mozilla Thunderbird prior 115.7 version	cpe:2.3:a:mozilla:thunderbird	< 115.7

Configuration #2

		CPE23	From	Up To
	Debian Linux 10.0	cpe:2.3:o:debian:debian_linux:10.0