CVE-2024-2605 | Vulnerability Database

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-2605
CWE	https://cwe.mitre.org/data/definitions/.html

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-2605

CWE

https://cwe.mitre.org/data/definitions/.html

An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1872920
https://www.mozilla.org/security/advisories/mfsa2024-12/
https://www.mozilla.org/security/advisories/mfsa2024-13/
https://www.mozilla.org/security/advisories/mfsa2024-14/