CVE-2024-7521
HIGHMozilla Firefox < 129.0 - Improper Exception Handling
Title source: ruleDescription
Incomplete WebAssembly exception handing could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.
References (6)
Scores
CVSS v3
8.8
EPSS
0.0026
EPSS Percentile
49.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Classification
CWE
CWE-755
Status
published
Affected Products (5)
mozilla/firefox
< 129.0
mozilla/firefox_esr
< 115.14.0
mozilla/firefox_esr
mozilla/thunderbird
< 115.14.0
mozilla/thunderbird
Timeline
Published
Aug 06, 2024
Tracked Since
Feb 18, 2026