CVE-2024-5694

CVSS v3.1 7.5 (High)

EPSS 0.09 % (38^th)

Affected Products 1

Advisories 3

NVD Status Analyzed

An attacker could have caused a use-after-free in the JavaScript engine to read memory in the JavaScript string section of the heap. This vulnerability affects Firefox < 127.

Weaknesses

CWE-416: Use After Free

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: Mozilla Corporation
Published Date: 2024-06-11 13:15:50
(3 months ago)
Updated Date: 2024-09-12 17:28:47
(4 days ago)

Affected Products

Mozilla

Firefox

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 127.0 version	cpe:2.3:a:mozilla:firefox		< 127.0