VDB
CVE-2024-11699
CVE-2024-11699
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Firefox ist ein Open Source Web Browser. ESR ist die Variante mit verlängertem Support. Thunderbird ist ein Open Source E-Mail Client.
EPSS 0.12% · 30.6th percentile
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.12%
30.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fedora | Fedora Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| RESF | RESF Rocky Linux | |
| SUSE | SUSE openSUSE | |
| Debian | Debian Linux | |
| Mozilla | Mozilla Firefox ESR <115.18 | |
| Mozilla | Mozilla Thunderbird <128.5 | |
| Amazon | Amazon Linux 2 | |
| Xerox | Xerox FreeFlow Print Server 9 | |
| SUSE | SUSE Linux | |
| Mozilla | Mozilla Firefox <133 | |
| Ubuntu | Ubuntu Linux | |
| Mozilla | Mozilla Firefox iOS <133 | |
| Gentoo | Gentoo Linux | |
| Mozilla | Mozilla Thunderbird <115.18 | |
| Oracle | Oracle Linux | |
| Mozilla | Mozilla Thunderbird <133 | |
| Mozilla | Mozilla Firefox ESR <128.5 |
Timeline
- Nov 26, 2024 CVE Published
- Nov 27, 2024 EPSS Score
- Dec 15, 2024 EPSS Score
- Jan 1, 2025 EPSS Score
- Jan 19, 2025 EPSS Score
- Feb 5, 2025 EPSS Score
- Feb 19, 2025 Coalition ESS Score
- Feb 22, 2025 EPSS Score
- Mar 11, 2025 EPSS Score
- Mar 28, 2025 EPSS Score
- Apr 14, 2025 EPSS Score
- May 2, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3549.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3549 advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-63/ advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-64/ advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-65/ advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-66/ advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-67/ advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-68/ advisory
- https://lists.debian.org/debian-security-announce/2024/msg00235.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-November/019849.html advisory
- https://lists.debian.org/debian-security-announce/2024/msg00236.html advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/A4674K2BTSTWJICHGZJ5CPXK5C5U65NR/ advisory
- https://lists.debian.org/debian-lts-announce/2024/11/msg00029.html advisory
- https://lists.debian.org/debian-lts-announce/2024/11/msg00027.html advisory
- https://access.redhat.com/errata/RHSA-2024:10591 advisory
- https://access.redhat.com/errata/RHSA-2024:10592 advisory
- https://access.redhat.com/errata/RHSA-2024:10667 advisory
- https://ubuntu.com/security/notices/USN-7134-1 advisory
- https://access.redhat.com/errata/RHSA-2024:10704 advisory
- https://access.redhat.com/errata/RHSA-2024:10702 advisory
…and 42 more