CVE-2024-8387

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-8387

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-8387.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-8387

Downstream

DEBIAN-CVE-2024-8387

OESA-2024-2241

RHSA-2024:6681

RHSA-2024:6682

RHSA-2024:6683

RHSA-2024:6684

RHSA-2024:6719

RHSA-2024:6720

RHSA-2024:6721

RHSA-2024:6722

RHSA-2024:6723

RHSA-2024:6816

RHSA-2024:6838

RHSA-2024:6891

RHSA-2024:6892

SUSE-SU-2024:3152-1

SUSE-SU-2024:3157-1

SUSE-SU-2024:3507-1

UBUNTU-CVE-2024-8387

USN-6992-1

openSUSE-SU-2024:14358-1

openSUSE-SU-2024:14369-1

openSUSE-SU-2024:14572-1

Related

Published

2024-09-03T13:15:05Z

Modified

2025-08-09T19:01:28Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Thunderbird < 128.2.

References

Affected packages