CVE-2024-9399

Oct. 4, 2024, 1:51 p.m.

Products Impacted

Thunderbird

  • < 128.3
  • < 131

Firefox

  • < 131
  • < 128.3

Description

A website configured to initiate a specially crafted WebTransport session could crash the Firefox process leading to a denial of service condition. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and Thunderbird < 131.

Weaknesses

Date

Published: Oct. 1, 2024, 4:15 p.m.

Last Modified: Oct. 4, 2024, 1:51 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@mozilla.org

References