CVE-2024-9680 - Mozilla Firefox Use-After-Free Vulnerability

CVE-2024-9680: Mozilla | Firefox

Date Added:
2024-10-15

Due Date:
2024-11-05

Vulnerability Name: Mozilla Firefox Use-After-Free Vulnerability

Description: Mozilla Firefox and Firefox ESR contain a use-after-free vulnerability in Animation timelines that allows for code execution in the content process.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes: https://www.mozilla.org/en-US/security/advisories/mfsa2024-51/ ; https://nvd.nist.gov/vuln/detail/CVE-2024-9680

Related News Articles: SolarWinds Web Help Desk flaw is now exploited in attacksOctober 17, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard