CVE-2024-2614

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-2614

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-2614.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-2614

Downstream

DEBIAN-CVE-2024-2614

DLA-3769-1

DLA-3775-1

DSA-5643-1

DSA-5644-1

OESA-2025-1265

OESA-2025-1268

RHSA-2024:1483

RHSA-2024:1484

RHSA-2024:1485

RHSA-2024:1486

RHSA-2024:1487

RHSA-2024:1488

RHSA-2024:1489

RHSA-2024:1490

RHSA-2024:1491

RHSA-2024:1492

RHSA-2024:1493

RHSA-2024:1494

RHSA-2024:1495

RHSA-2024:1496

RHSA-2024:1497

RHSA-2024:1498

RHSA-2024:1499

RHSA-2024:1500

SUSE-SU-2024:0971-1

SUSE-SU-2024:1002-1

SUSE-SU-2024:1147-1

UBUNTU-CVE-2024-2614

USN-6703-1

USN-6717-1

openSUSE-SU-2024:13789-1

openSUSE-SU-2024:13795-1

openSUSE-SU-2024:14572-1

Related

Published

2024-03-19T12:15:09Z

Modified

2025-08-09T20:01:28Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

References

Affected packages