QID 379518

Firefox is a free and open-source web browser developed for Windows, OS X, and Linux, with a mobile version for Android.

Mozilla Firefox is prone to
CVE-2024-2605: Windows Error Reporter could be used as a Sandbox escape vector
CVE-2024-2606: Mishandling of WASM register values
CVE-2024-2607: JIT code failed to save return registers on Armv7-A
CVE-2024-2608: Integer overflow could have led to out of bounds write
CVE-2023-5388: NSS susceptible to timing attack against RSA decryption
CVE-2024-2609: Permission prompt input delay could expire when not in focus
CVE-2024-2610: Improper handling of html and body tags enabled CSP nonce leakage
CVE-2024-2611: Clickjacking vulnerability could have led to a user accidentally granting permissions
CVE-2024-2612: Self referencing object could have potentially led to a use-after-free
CVE-2024-2613: Improper handling of QUIC ACK frame data could have led to OOM
CVE-2024-2614: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9
CVE-2024-2615: Memory safety bugs fixed in Firefox 124

Affected Products:
Prior to Firefox 124

QID Detection Logic (Authenticated) :
This checks for vulnerable version of Firefox browser.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.