Unrated severityNVD Advisory· Published Apr 16, 2024· Updated Nov 12, 2024
CVE-2024-3855
CVE-2024-3855
Description
In certain cases the JIT incorrectly optimized MSubstr operations, which led to out-of-bounds reads. This vulnerability affects Firefox < 125.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5<125+ 1 more
- (no CPE)range: <125
- (no CPE)range: unspecified
- osv-coords3 versionspkg:apk/chainguard/firefox-esrpkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweed
< 125-r0+ 2 more
- (no CPE)range: < 125-r0
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 125.0.2-1.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.