CVE-2024-1546

When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.6 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=1843752	Issue Tracking
https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html	Mailing List
https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html	Mailing List
https://www.mozilla.org/security/advisories/mfsa2024-05/	Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-06/	Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-07/	Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=1843752	Issue Tracking
https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html	Mailing List
https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html	Mailing List
https://www.mozilla.org/security/advisories/mfsa2024-05/	Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-06/	Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2024-07/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mozilla:firefox:::::esr:::*
	cpe:2.3:a:mozilla:firefox:::::-:::*
	cpe:2.3:a:mozilla:thunderbird::::::::

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2024-02-20 14:15

Updated : 2025-03-27 14:35

NVD link : CVE-2024-1546

Mitre link : CVE-2024-1546

CVE.ORG link : CVE-2024-1546

JSON object : View

Products Affected

mozilla

thunderbird
firefox

debian

debian_linux

CWE

CWE-125

Out-of-bounds Read

{"id": "CVE-2024-1546", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.6}]}, "published": "2024-02-20T14:15:08.477", "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1843752", "tags": ["Issue Tracking"], "source": "[email protected]"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "tags": ["Mailing List"], "source": "[email protected]"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "tags": ["Mailing List"], "source": "[email protected]"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1843752", "tags": ["Issue Tracking"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. This vulnerability affects Firefox < 123, Firefox ESR < 115.8, and Thunderbird < 115.8."}, {"lang": "es", "value": "Al almacenar y volver a acceder a datos en un canal de red, es posible que se haya confundido la longitud de los bufferse, lo que resulta en una lectura de memoria fuera de los l\u00edmites. Esta vulnerabilidad afecta a Firefox < 123, Firefox ESR < 115.8 y Thunderbird < 115.8."}], "lastModified": "2025-03-27T14:35:06.873", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*", "vulnerable": true, "matchCriteriaId": "355C0EEB-8EF2-4464-BDD4-7616AA6A65FA", "versionEndExcluding": "115.8.0"}, {"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "DD7E737F-745F-4A07-B4E3-B51D2DB6C96F", "versionEndExcluding": "123.0"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7380CBFA-8328-4F35-AE4F-46482C77BEF6", "versionEndExcluding": "115.8.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}