CVE-2024-6609

CVSS v3.1 8.8 (High)

EPSS 0.07 % (31^th)

Affected Products 2

Advisories 6

NVD Status Analyzed

When almost out-of-memory an elliptic curve key which was never allocated could have been freed again. This vulnerability affects Firefox < 128 and Thunderbird < 128.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: Mozilla Corporation
Published Date: 2024-07-09 15:15:12
(2 months ago)
Updated Date: 2024-08-29 18:32:56
(2 weeks ago)

Affected Products

Mozilla

Firefox
Thunderbird

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 128.0 version	cpe:2.3:a:mozilla:firefox		< 128.0
	Mozilla Thunderbird prior 128.0 version	cpe:2.3:a:mozilla:thunderbird		< 128.0