vulnerability

FreeBSD: VID-a3a1caf5-6ba1-11ef-b9e8-b42e991fc52e (CVE-2024-8385): firefox -- multiple vulnerabilities

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Sep 5, 2024

Added

Sep 6, 2024

Modified

Jun 15, 2026

Description

A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an exploitable type confusion vulnerability. This vulnerability affects Firefox less than 130, Firefox ESR less than 128.2, and Thunderbird less than 128.2.

Solution

freebsd-upgrade-package-firefox

References

CVE-2024-8385
https://attackerkb.com/topics/CVE-2024-8385
CWE-843
EUVD-EUVD-2024-49141
https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-49141

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report