CVE-2024-4775

Summary

An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior. Note: This issue only affects the application when the profiler is running. This vulnerability affects Firefox < 126.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 126affected

Weaknesses

  • Invalid memory access in the built-in profiler

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References