CVE-2024-7652 - Vulnerability Details

An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Mozilla	Firefox Firefox Esr Thunderbird
Redhat	Enterprise Linux Rhel Aus Rhel E4s Rhel Els Rhel Eus Rhel Tus

Configuration 1 [-]

OR	cpe:2.3:a:mozilla:firefox:::::esr:::*
	cpe:2.3:a:mozilla:firefox::::::::
	cpe:2.3:a:mozilla:thunderbird::::::::
	cpe:2.3:a:mozilla:thunderbird::::::::

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 7 Extended Lifecycle Support
firefox-0:128.2.0-1.el7_9	cpe:/o:redhat:rhel_els:7	RHSA-2024:6838	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8
firefox-0:128.2.0-1.el8_10	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:6682	2024-09-16T00:00:00Z
thunderbird-0:128.2.0-1.el8_10	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:6684	2024-09-16T00:00:00Z
Red Hat Enterprise Linux 8.2 Advanced Update Support
thunderbird-0:128.2.0-1.el8_2	cpe:/a:redhat:rhel_aus:8.2	RHSA-2024:6723	2024-09-17T00:00:00Z
firefox-0:128.2.0-1.el8_2	cpe:/a:redhat:rhel_aus:8.2	RHSA-2024:6839	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
thunderbird-0:128.2.0-1.el8_4	cpe:/a:redhat:rhel_aus:8.4	RHSA-2024:6721	2024-09-17T00:00:00Z
firefox-0:128.2.0-1.el8_4	cpe:/a:redhat:rhel_aus:8.4	RHSA-2024:6891	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8.4 Telecommunications Update Service
thunderbird-0:128.2.0-1.el8_4	cpe:/a:redhat:rhel_tus:8.4	RHSA-2024:6721	2024-09-17T00:00:00Z
firefox-0:128.2.0-1.el8_4	cpe:/a:redhat:rhel_tus:8.4	RHSA-2024:6891	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
thunderbird-0:128.2.0-1.el8_4	cpe:/a:redhat:rhel_e4s:8.4	RHSA-2024:6721	2024-09-17T00:00:00Z
firefox-0:128.2.0-1.el8_4	cpe:/a:redhat:rhel_e4s:8.4	RHSA-2024:6891	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
firefox-0:128.2.0-1.el8_6	cpe:/a:redhat:rhel_aus:8.6	RHSA-2024:6892	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8.6 Telecommunications Update Service
thunderbird-0:128.2.0-1.el8_6	cpe:/a:redhat:rhel_tus:8.6	RHSA-2024:6816	2024-09-19T00:00:00Z
firefox-0:128.2.0-1.el8_6	cpe:/a:redhat:rhel_tus:8.6	RHSA-2024:6892	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
firefox-0:128.2.0-1.el8_6	cpe:/a:redhat:rhel_e4s:8.6	RHSA-2024:6892	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 8.8 Extended Update Support
thunderbird-0:128.2.0-1.el8_8	cpe:/a:redhat:rhel_eus:8.8	RHSA-2024:6719	2024-09-17T00:00:00Z
firefox-0:128.2.0-1.el8_8	cpe:/a:redhat:rhel_eus:8.8	RHSA-2024:6850	2024-09-19T00:00:00Z
Red Hat Enterprise Linux 9
firefox-0:128.2.0-1.el9_4	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:6681	2024-09-16T00:00:00Z
thunderbird-0:128.2.0-1.el9_4	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:6683	2024-09-16T00:00:00Z
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions
thunderbird-0:128.2.0-1.el9_0	cpe:/a:redhat:rhel_e4s:9.0	RHSA-2024:6722	2024-09-17T00:00:00Z
firefox-0:128.2.0-1.el9_0	cpe:/a:redhat:rhel_e4s:9.0	RHSA-2024:6782	2024-09-18T00:00:00Z
Red Hat Enterprise Linux 9.2 Extended Update Support
thunderbird-0:128.2.0-1.el9_2	cpe:/a:redhat:rhel_eus:9.2	RHSA-2024:6720	2024-09-17T00:00:00Z
firefox-0:128.2.0-1.el9_2	cpe:/a:redhat:rhel_eus:9.2	RHSA-2024:6786	2024-09-18T00:00:00Z

References

Link	Providers
https://bugzilla.mozilla.org/show_bug.cgi?id=1901411
https://github.com/tc39/ecma262/security/advisories/GHSA-g38c-wh3c-5h9r
https://nvd.nist.gov/vuln/detail/CVE-2024-7652
https://www.cve.org/CVERecord?id=CVE-2024-7652
https://www.mozilla.org/security/advisories/mfsa2024-29/
https://www.mozilla.org/security/advisories/mfsa2024-30/
https://www.mozilla.org/security/advisories/mfsa2024-31/
https://www.mozilla.org/security/advisories/mfsa2024-32/

History

Fri, 04 Apr 2025 15:00:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:mozilla:firefox:::::esr:::*

Thu, 19 Sep 2024 23:00:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:rhel_aus:8.6 cpe:/a:redhat:rhel_e4s:8.6

Thu, 19 Sep 2024 19:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat rhel Els
CPEs		cpe:/o:redhat:rhel_els:7
Vendors & Products		Redhat rhel Els

Thu, 19 Sep 2024 10:30:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:rhel_tus:8.6

Tue, 17 Sep 2024 19:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat rhel Aus Redhat rhel E4s Redhat rhel Eus Redhat rhel Tus
CPEs		cpe:/a:redhat:rhel_aus:8.2 cpe:/a:redhat:rhel_aus:8.4 cpe:/a:redhat:rhel_e4s:8.4 cpe:/a:redhat:rhel_e4s:9.0 cpe:/a:redhat:rhel_eus:8.8 cpe:/a:redhat:rhel_eus:9.2 cpe:/a:redhat:rhel_tus:8.4
Vendors & Products		Redhat rhel Aus Redhat rhel E4s Redhat rhel Eus Redhat rhel Tus

Tue, 17 Sep 2024 02:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat Redhat enterprise Linux
CPEs		cpe:/a:redhat:enterprise_linux:8 cpe:/a:redhat:enterprise_linux:9
Vendors & Products		Redhat Redhat enterprise Linux

Sat, 07 Sep 2024 01:15:00 +0000

Type	Values Removed	Values Added
Title		mozilla: Type Confusion in Async Generators in Javascript Engine
References		https://nvd.nist.gov/vuln/detail/CVE-2024-7652 https://www.cve.org/CVERecord?id=CVE-2024-7652
Metrics	threat_severity `None`	threat_severity `Important`

Fri, 06 Sep 2024 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Mozilla Mozilla firefox Mozilla firefox Esr Mozilla thunderbird
Weaknesses		CWE-476 CWE-843
CPEs		cpe:2.3:a:mozilla:firefox:::::::: cpe:2.3:a:mozilla:firefox_esr:::::::: cpe:2.3:a:mozilla:thunderbird::::::::
Vendors & Products		Mozilla Mozilla firefox Mozilla firefox Esr Mozilla thunderbird
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 06 Sep 2024 18:30:00 +0000

Type	Values Removed	Values Added
Description		An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.
References		https://bugzilla.mozilla.org/show_bug.cgi?id=1901411 https://github.com/tc39/ecma262/security/advisories/GHSA-g38c-wh3c-5h9r https://www.mozilla.org/security/advisories/mfsa2024-29/ https://www.mozilla.org/security/advisories/mfsa2024-30/ https://www.mozilla.org/security/advisories/mfsa2024-31/ https://www.mozilla.org/security/advisories/mfsa2024-32/

MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2024-09-06T18:18:28.692Z

Updated: 2024-09-12T15:48:01.595Z

Reserved: 2024-08-09T17:55:56.045Z

Link: CVE-2024-7652

Vulnrichment

Updated: 2024-09-06T20:10:41.372Z

NVD

Status : Analyzed

Published: 2024-09-06T19:15:12.710

Modified: 2025-04-04T14:38:20.540

Link: CVE-2024-7652

Redhat

Severity : Important

Publid Date: 2024-09-06T19:15:12Z

Links: CVE-2024-7652 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-7652", "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "state": "PUBLISHED", "assignerShortName": "mozilla", "dateReserved": "2024-08-09T17:55:56.045Z", "datePublished": "2024-09-06T18:18:28.692Z", "dateUpdated": "2024-09-12T15:48:01.595Z"}, "containers": {"cna": {"affected": [{"product": "Firefox", "vendor": "Mozilla", "versions": [{"lessThan": "128", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Firefox ESR", "vendor": "Mozilla", "versions": [{"lessThan": "115.13", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Thunderbird", "vendor": "Mozilla", "versions": [{"lessThan": "115.13", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Thunderbird", "vendor": "Mozilla", "versions": [{"lessThan": "128", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128."}]}], "problemTypes": [{"descriptions": [{"description": "Type Confusion in Async Generators in Javascript Engine", "lang": "en", "type": "text"}]}], "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1901411"}, {"url": "https://github.com/tc39/ecma262/security/advisories/GHSA-g38c-wh3c-5h9r"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-29/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-30/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-31/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-32/"}], "credits": [{"lang": "en", "value": "Nils Bars"}], "providerMetadata": {"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla", "dateUpdated": "2024-09-12T15:48:01.595Z"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-843", "lang": "en", "description": "CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')"}]}, {"descriptions": [{"type": "CWE", "cweId": "CWE-476", "lang": "en", "description": "CWE-476 NULL Pointer Dereference"}]}], "affected": [{"vendor": "mozilla", "product": "firefox_esr", "cpes": ["cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "115.13", "versionType": "custom"}]}, {"vendor": "mozilla", "product": "firefox", "cpes": ["cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "128", "versionType": "custom"}]}, {"vendor": "mozilla", "product": "thunderbird", "cpes": ["cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "115.13", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "128", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-09-06T20:13:40.202031Z", "id": "CVE-2024-7652", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-06T20:14:39.756Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-7652", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-06T20:13:40.202031Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*"], "vendor": "mozilla", "product": "firefox_esr", "versions": [{"status": "affected", "version": "0", "lessThan": "115.13", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*"], "vendor": "mozilla", "product": "firefox", "versions": [{"status": "affected", "version": "0", "lessThan": "128", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*"], "vendor": "mozilla", "product": "thunderbird", "versions": [{"status": "affected", "version": "0", "lessThan": "115.13", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "128", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-843", "description": "CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-476", "description": "CWE-476 NULL Pointer Dereference"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-06T20:10:41.372Z"}}], "cna": {"credits": [{"lang": "en", "value": "Nils Bars"}], "affected": [{"vendor": "Mozilla", "product": "Firefox", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "128", "versionType": "custom"}]}, {"vendor": "Mozilla", "product": "Firefox ESR", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "115.13", "versionType": "custom"}]}, {"vendor": "Mozilla", "product": "Thunderbird", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "115.13", "versionType": "custom"}]}, {"vendor": "Mozilla", "product": "Thunderbird", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "128", "versionType": "custom"}]}], "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1901411"}, {"url": "https://github.com/tc39/ecma262/security/advisories/GHSA-g38c-wh3c-5h9r"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-29/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-30/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-31/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2024-32/"}], "descriptions": [{"lang": "en", "value": "An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.", "supportingMedia": [{"type": "text/html", "value": "An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "Type Confusion in Async Generators in Javascript Engine"}]}], "providerMetadata": {"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla", "dateUpdated": "2024-09-12T15:48:01.595Z"}}}, "cveMetadata": {"cveId": "CVE-2024-7652", "state": "PUBLISHED", "dateUpdated": "2024-09-12T15:48:01.595Z", "dateReserved": "2024-08-09T17:55:56.045Z", "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "datePublished": "2024-09-06T18:18:28.692Z", "assignerShortName": "mozilla"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*", "matchCriteriaId": "0046277A-0AFD-48CD-9B05-ED359505081C", "versionEndExcluding": "115.13.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "matchCriteriaId": "540E6900-1ECF-4138-9ABB-C3CC81FCF47B", "versionEndExcluding": "128.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "matchCriteriaId": "42A41946-0238-4E99-979E-BEF87B632598", "versionEndExcluding": "115.13.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "matchCriteriaId": "B54A357A-8350-41CE-AF08-F7BE6E33CC44", "versionEndExcluding": "128.0", "versionStartIncluding": "116.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128."}, {"lang": "es", "value": "Un error en la especificaci\u00f3n ECMA-262 relacionada con los generadores asincr\u00f3nicos podr\u00eda haber provocado una confusi\u00f3n de tipos, lo que podr\u00eda provocar una corrupci\u00f3n de la memoria y un bloqueo explotable. Esta vulnerabilidad afecta a Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13 y Thunderbird < 128."}], "id": "CVE-2024-7652", "lastModified": "2025-04-04T14:38:20.540", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-09-06T19:15:12.710", "references": [{"source": "security@mozilla.org", "tags": ["Issue Tracking"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1901411"}, {"source": "security@mozilla.org", "tags": ["Third Party Advisory"], "url": "https://github.com/tc39/ecma262/security/advisories/GHSA-g38c-wh3c-5h9r"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2024-29/"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2024-30/"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2024-31/"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2024-32/"}], "sourceIdentifier": "security@mozilla.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-476"}, {"lang": "en", "value": "CWE-843"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{"affected_release": [{"advisory": "RHSA-2024:6838", "cpe": "cpe:/o:redhat:rhel_els:7", "package": "firefox-0:128.2.0-1.el7_9", "product_name": "Red Hat Enterprise Linux 7 Extended Lifecycle Support", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6682", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "firefox-0:128.2.0-1.el8_10", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6684", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "thunderbird-0:128.2.0-1.el8_10", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6723", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "thunderbird-0:128.2.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2024-09-17T00:00:00Z"}, {"advisory": "RHSA-2024:6839", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "firefox-0:128.2.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6721", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "thunderbird-0:128.2.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2024-09-17T00:00:00Z"}, {"advisory": "RHSA-2024:6891", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "firefox-0:128.2.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6721", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "thunderbird-0:128.2.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2024-09-17T00:00:00Z"}, {"advisory": "RHSA-2024:6891", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "firefox-0:128.2.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6721", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "thunderbird-0:128.2.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2024-09-17T00:00:00Z"}, {"advisory": "RHSA-2024:6891", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "firefox-0:128.2.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6892", "cpe": "cpe:/a:redhat:rhel_aus:8.6", "package": "firefox-0:128.2.0-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6816", "cpe": "cpe:/a:redhat:rhel_tus:8.6", "package": "thunderbird-0:128.2.0-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6892", "cpe": "cpe:/a:redhat:rhel_tus:8.6", "package": "firefox-0:128.2.0-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6892", "cpe": "cpe:/a:redhat:rhel_e4s:8.6", "package": "firefox-0:128.2.0-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6719", "cpe": "cpe:/a:redhat:rhel_eus:8.8", "package": "thunderbird-0:128.2.0-1.el8_8", "product_name": "Red Hat Enterprise Linux 8.8 Extended Update Support", "release_date": "2024-09-17T00:00:00Z"}, {"advisory": "RHSA-2024:6850", "cpe": "cpe:/a:redhat:rhel_eus:8.8", "package": "firefox-0:128.2.0-1.el8_8", "product_name": "Red Hat Enterprise Linux 8.8 Extended Update Support", "release_date": "2024-09-19T00:00:00Z"}, {"advisory": "RHSA-2024:6681", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "firefox-0:128.2.0-1.el9_4", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6683", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "thunderbird-0:128.2.0-1.el9_4", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6722", "cpe": "cpe:/a:redhat:rhel_e4s:9.0", "package": "thunderbird-0:128.2.0-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions", "release_date": "2024-09-17T00:00:00Z"}, {"advisory": "RHSA-2024:6782", "cpe": "cpe:/a:redhat:rhel_e4s:9.0", "package": "firefox-0:128.2.0-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions", "release_date": "2024-09-18T00:00:00Z"}, {"advisory": "RHSA-2024:6720", "cpe": "cpe:/a:redhat:rhel_eus:9.2", "package": "thunderbird-0:128.2.0-1.el9_2", "product_name": "Red Hat Enterprise Linux 9.2 Extended Update Support", "release_date": "2024-09-17T00:00:00Z"}, {"advisory": "RHSA-2024:6786", "cpe": "cpe:/a:redhat:rhel_eus:9.2", "package": "firefox-0:128.2.0-1.el9_2", "product_name": "Red Hat Enterprise Linux 9.2 Extended Update Support", "release_date": "2024-09-18T00:00:00Z"}], "bugzilla": {"description": "mozilla: Type Confusion in Async Generators in Javascript Engine", "id": "2310490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310490"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.6", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "status": "verified"}, "cwe": "CWE-843", "details": ["An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.", "A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2024-7652", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "firefox", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "thunderbird", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "thunderbird", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2024-09-06T19:15:12Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-7652\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-7652\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1901411\nhttps://github.com/tc39/ecma262/security/advisories/GHSA-g38c-wh3c-5h9r\nhttps://www.mozilla.org/security/advisories/mfsa2024-29/\nhttps://www.mozilla.org/security/advisories/mfsa2024-30/\nhttps://www.mozilla.org/security/advisories/mfsa2024-31/\nhttps://www.mozilla.org/security/advisories/mfsa2024-32/"], "statement": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.", "threat_severity": "Important"}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object