CVE-2024-11705 - Firefox and Thunderbird Crash via NULL Pointer in NSC_DeriveKey (with Exploit Details)
In early 2024, security researchers and Mozilla developers uncovered a crash bug affecting the NSC_DeriveKey function within the NSS (Network Security Services) library, which
CVE-2024-11696 - Bypassing Add-On Signature Validation in Firefox and Thunderbird Due to Unhandled Exceptions
In early 2024, a notable security issue was discovered affecting Mozilla Firefox, Firefox ESR, and Thunderbird. The vulnerability, tracked as CVE-2024-11696, exposes a flaw in
CVE-2024-11699 - Understanding the Memory Safety Bugs in Firefox and Thunderbird
CVE-2024-11699 sounded a silent alarm for millions of users when it was disclosed—highlighting critical memory safety bugs present in popular software including Firefox 132,
CVE-2024-11693 - Unwarned .library-ms File Downloads in Firefox and Thunderbird (Exploit & Analysis)
A critical vulnerability, CVE-2024-11693, was discovered affecting several versions of Firefox, Firefox ESR, and Thunderbird on Windows systems. This post takes a deep dive into
CVE-2024-11691 - WebGL Out-of-Bounds Write on Apple M Series (A Deep Dive into Firefox and Thunderbird Vulnerability)
In early 2024, a dangerous bug was found in Apple's GPU driver, that could let a carefully crafted WebGL operation corrupt device memory
Episode
00:00:00
00:00:00