CVE-2024-5694 — Vulnetix

CVE-2024-5694 PUBLISHED

In Mozilla Firefox und Mozilla Firefox ESR existieren mehrere Schwachstellen. Zu den Ursachen zählen unter anderem diverse Fehler in der Speicherverwaltung sowie fehlende oder fehlerhafte Validierungen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, um einen Denial of Service Zustand herbeizuführen und um Sicherheitsmechanismen zu umgehen, sowie den Benutzer zu täuschen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.

EPSS 0.71% · 72.6th percentile

Risk Scores

EPSS Score

0.71%

72.6th percentile

Affected Products

Vendor	Product	Versions
Mozilla	Mozilla Firefox ESR <115.12
Xerox	Xerox FreeFlow Print Server
Oracle	Oracle Linux
Debian	Debian Linux
Amazon	Amazon Linux 2
Red Hat	Red Hat Enterprise Linux
RESF	RESF Rocky Linux
Ubuntu	Ubuntu Linux
Gentoo	Gentoo Linux
Xerox	Xerox FreeFlow Print Server v9
SUSE	SUSE Linux
Mozilla	Mozilla Firefox <127
SUSE	SUSE openSUSE

Timeline

Jun 11, 2024 CVE Published
Jun 12, 2024 EPSS Score
Jul 5, 2024 EPSS Score
Jul 28, 2024 EPSS Score
Aug 20, 2024 EPSS Score
Sep 12, 2024 EPSS Score
Oct 5, 2024 EPSS Score
Oct 5, 2024 Coalition ESS Score
Oct 28, 2024 EPSS Score
Nov 20, 2024 EPSS Score
Dec 14, 2024 EPSS Score
Jan 6, 2025 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1346.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1346 advisory
https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/ advisory
https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/ advisory
https://lists.suse.com/pipermail/sle-security-updates/2024-June/018709.html advisory
https://security-tracker.debian.org/tracker/DSA-5709-1 advisory
https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html advisory
https://lists.debian.org/debian-security-announce/2024/msg00121.html advisory
https://linux.oracle.com/errata/ELSA-2024-3951.html advisory
https://access.redhat.com/errata/RHSA-2024:3949 advisory
https://linux.oracle.com/errata/ELSA-2024-3954.html advisory
https://linux.oracle.com/errata/ELSA-2024-3955.html advisory
https://access.redhat.com/errata/RHSA-2024:3950 advisory
https://access.redhat.com/errata/RHSA-2024:3951 advisory
https://access.redhat.com/errata/RHSA-2024:3952 advisory
https://access.redhat.com/errata/RHSA-2024:3953 advisory
https://access.redhat.com/errata/RHSA-2024:3958 advisory
https://access.redhat.com/errata/RHSA-2024:3954 advisory
https://access.redhat.com/errata/RHSA-2024:3955 advisory
https://access.redhat.com/errata/RHSA-2024:3972 advisory

…and 32 more

Open in Interactive Console →