CVE-2024-3852 — Symbolic Name not Mapping to Correct Object in Mozilla Firefox

CWE-386 — Symbolic Name not Mapping to Correct Object CWE-843 — Type Confusion14 documents8 sources

Severity

7.5HIGHNVD

OSV6.1OSV3.7

EPSS

1.1%

top 21.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Firefox ESR Mozilla Thunderbird

Timeline

PublishedApr 16

Latest updateMay 2

Description

GetBoundName could return the wrong version of an object when JIT optimizations were applied. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9

Affected Packages8 packages

▶CVEListV5mozilla/firefoxunspecified — 125

▶NVDmozilla/firefox< 115.10+1

▶CVEListV5mozilla/firefox_esrunspecified — 115.10

▶Ubuntumozilla/firefox< 125.0.3+build1-0ubuntu0.20.04.1+1

▶CVEListV5mozilla/thunderbirdunspecified — 115.10

🔴Vulnerability Details

OSV

firefox regressions↗2024-05-02

▶

OSV

thunderbird vulnerabilities↗2024-04-25

▶

OSV

firefox vulnerabilities↗2024-04-24

▶

GHSA

GHSA-pc7c-2483-8558: GetBoundName could return the wrong version of an object when JIT optimizations were applied↗2024-04-16

▶

OSV

CVE-2024-3852: GetBoundName could return the wrong version of an object when JIT optimizations were applied↗2024-04-16

▶

📋Vendor Advisories

Ubuntu

Thunderbird vulnerabilities↗2024-04-25

▶

Ubuntu

Firefox vulnerabilities↗2024-04-24

▶

Red Hat

Mozilla: GetBoundName in the JIT returned the wrong object↗2024-04-16

▶

Debian

CVE-2024-3852: firefox - GetBoundName could return the wrong version of an object when JIT optimizations ...↗2024

▶

Mozilla

Mozilla Foundation Security Advisory 2024-20: CVE-2024-3852↗

▶