Mozilla releases security update for Firefox to fix remote code execution via CVE-2024-9680 bug.

Mozilla has released an urgent security update for Firefox, addressing a critical vulnerability (CVE-2024-9680) that allows attackers to execute code remotely through a use-after-free bug in animation timelines. Discovered by ESET's Damien Schaeffer, this flaw affects both standard and Extended Support Release versions of Firefox. Users are advised to update to version 131.0.2 or relevant ESR versions immediately to safeguard against potential exploitation.

October 09, 2024
12 Articles