CVE-2024-2607

CVSS v3.1 8.1 (High)

EPSS 0.04 % (11^th)

Advisories 31

NVD Status Awaiting Analysis

Return registers were overwritten which could have allowed an attacker to execute arbitrary code. Note: This issue only affected Armv7-A systems. Other operating systems are unaffected. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

Weaknesses

CWE-123: Write-what-where Condition

CVE Status: PUBLISHED
NVD Status: Awaiting Analysis
CNA: Mozilla Corporation
Published Date: 2024-03-19 12:15:08
(6 months ago)
Updated Date: 2024-08-12 18:35:35
(5 weeks ago)