Skip to main content

Mozilla Releases Security Updates for Firefox and Firefox ESR

Advisory addresses one critical vulnerability

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Advisory addresses one critical vulnerability


Threat details

Exploitation of CVE-2024-9680

Mozilla has observed exploitation of CVE-2024-9680 in the wild.


Introduction

Mozilla has released security updates to address one critical vulnerability in Firefox and Firefox ESR.

CVE-2024-9680 is a use-after-free vulnerability in Animation timelines and has a CVSSv3 score of 9.8. Exploitation could allow a remote, unauthenticated attacker to achieve code execution.


Remediation advice

Affected organisations are encouraged to review the Mozilla Foundation Security Advisory mfsa2024-51 and apply the relevant updates.



Last edited: 10 October 2024 3:51 pm