CVE-2024-1553

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-1553
Memory safety bugs present in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.
CVSS

No CVSS.

References
Link Resource
https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286 Issue Tracking
https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286 Issue Tracking
https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html Mailing List
https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html Mailing List
https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html Mailing List
https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html Mailing List
https://www.mozilla.org/security/advisories/mfsa2024-05/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-05/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-06/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-06/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-07/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-07/ Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
History

27 Mar 2025, 14:39

Type Values Removed Values Added
First Time Mozilla thunderbird
Debian debian Linux
Mozilla firefox
Debian
Mozilla
CPE cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
References () https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286 - () https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286 - Issue Tracking
References () https://www.mozilla.org/security/advisories/mfsa2024-05/ - () https://www.mozilla.org/security/advisories/mfsa2024-05/ - Vendor Advisory
References () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html - () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html - Mailing List
References () https://www.mozilla.org/security/advisories/mfsa2024-06/ - () https://www.mozilla.org/security/advisories/mfsa2024-06/ - Vendor Advisory
References () https://www.mozilla.org/security/advisories/mfsa2024-07/ - () https://www.mozilla.org/security/advisories/mfsa2024-07/ - Vendor Advisory
References () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html - () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html - Mailing List

04 Mar 2024, 09:15

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html -
  • () https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html -

20 Feb 2024, 20:15

Type Values Removed Values Added
Summary Memory safety bugs present in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 123 and Firefox ESR < 115.8. Memory safety bugs present in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.
References
  • () https://www.mozilla.org/security/advisories/mfsa2024-07/ -

20 Feb 2024, 14:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-02-20 14:15

Updated : 2025-03-27 14:39

NVD link : CVE-2024-1553

Mitre link : CVE-2024-1553

JSON object : View

Products Affected

debian

  • debian_linux

mozilla

  • firefox
  • thunderbird
CWE

No CWE.