Produkty:
Domů
Pro malé podniky
Pro střední podniky
Pro velké podniky
Zranitelnosti Hrozby
Úvod Zranitelnosti

Multiple vulnerabilities in Mozilla Firefox

Kaspersky ID:
KLA67588
Detekováno:
05/14/2024
Aktualizováno:
03/09/2026

Popis

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, gain privileges, perform cross-site scripting attack.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in PDF.js can be exploited remotely to execute arbitrary code.
  2. Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
  3. Security vulnerability in private browsing mode can be exploited to bypass security restrictions.
  4. Memory safety vulnerability can be exploited to execute arbitrary code.
  5. An elevation of privilege vulnerability in popup notifications can be exploited remotely to gain privileges.
  6. A remote code execution vulnerability can be exploited remotely to execute arbitrary code.
  7. Security UI vulnerability can be exploited to spoof user interface.
  8. Security vulnerability in rand() function area can be exploited to bypass security restrictions.
  9. Security vulnerability can be exploited to bypass security restrictions.
  10. Security vulnerability in composition area can be exploited to bypass security restrictions.
  11. Memory safety vulnerability in Firefox 125 can be exploited to execute arbitrary code.
  12. Security UI vulnerability in Firefox for Android can be exploited to spoof user interface.
  13. A remote code execution vulnerability in Web application manifests were stored by using an insecure MD5 hash can be exploited remotely to execute arbitrary code.
  14. Denial of service vulnerability can be exploited remotely to cause denial of service.

Oficiální doporučení

Vykořisťování

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Související produkty

seznam CVE

  • CVE-2024-4367
    critical
  • CVE-2024-4770
    critical
  • CVE-2024-4767
    warning
  • CVE-2024-4777
    critical
  • CVE-2024-4768
    high
  • CVE-2024-4769
    high
  • CVE-2024-4776
    critical
  • CVE-2024-4764
    critical
  • CVE-2024-4773
    critical
  • CVE-2024-4772
    high
  • CVE-2024-4774
    high
  • CVE-2024-4771
    critical
  • CVE-2024-4775
    high
  • CVE-2024-4778
    critical
  • CVE-2024-4766
    warning
  • CVE-2024-4765
    critical
  • CVE-2024-10941
    high

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com

Našli jste v popisu této chyby zabezpečení nepřesnost? Dej nám vědět!
Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Zjistěte více
Kaspersky Premium
Zjistěte více
Related articles
26 March 2026
Securelist
An AI gateway designed to steal your data
26 March 2026
Securelist
Coruna: the framework used in Operation Triangulation
25 March 2026
Securelist
Anatomy of a Cyber World Global Report 2026
18 March 2026
Securelist
The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico
16 March 2026
Securelist
Free real estate: GoPix, the banking Trojan living off your memory
10 March 2026
Securelist
BeatBanker: A dual‑mode Android Trojan
Našli jste v popisu této chyby zabezpečení nepřesnost?
Pokud jste našli novou hrozbu nebo zranitelnost, dejte nám prosím vědět e-mailem:
newvirus@kaspersky.com
Našli jste novou hrozbu nebo zranitelnost?
Pokud jste našli novou hrozbu nebo zranitelnost, dejte nám prosím vědět e-mailem:
newvirus@kaspersky.com
Produkty
Domů
Pro malé podniky
Pro střední podniky
Pro velké podniky
Select language
Severity level
Critical
High
Warning
Sorting
Kaspersky ID
Zranitelnost
Detect date
Míra zranitelnosti
You must select at least one severity level
Do you want to save your changes?
Your message has been sent successfully.