CVE-2024-0755

Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7. More information : https://bugzilla.mozilla.org/buglist.cgi?bug_id=1868456%2C1871445%2C1873701

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : NONE
User interaction : REQUIRED
Confidentiality impact : HIGH
Integrity impact : HIGH
Base score : 8.8
Base severity : HIGH
Exploitability score : 2.8
Impact score : 5.9