CVE-2024-3854

CVSS v3.1 8.8 (High)

EPSS 0.04 % (11^th)

Advisories 31

NVD Status Awaiting Analysis

In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

Weaknesses

CWE-125: Out-of-bounds Read

CVE Status: PUBLISHED
NVD Status: Awaiting Analysis
CNA: Mozilla Corporation
Published Date: 2024-04-16 16:15:08
(5 months ago)
Updated Date: 2024-07-03 02:06:46
(2 months ago)