Login Sign Up

CVE-2024-4778

9.8 CRITICAL
Remote Code Execution

📋 TL;DR

CVE-2024-4778 is a critical memory safety vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. The vulnerability involves memory corruption bugs that could be exploited to take control of the browser. This affects all Firefox users running versions below 126.

💻 Affected Systems

Products:
  • Mozilla Firefox
Versions: All versions < 126
Operating Systems: Windows, Linux, macOS, Android
Default Config Vulnerable: ⚠️ Yes
Notes: All standard Firefox installations are vulnerable. No special configuration required for exploitation.

📦 What is this software?

Firefox by Mozilla

View all CVEs affecting Firefox →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Browser compromise allowing session hijacking, credential theft, or malware installation.

🟢

If Mitigated

Limited impact with proper network segmentation and endpoint protection blocking exploit attempts.

🌐 Internet-Facing: HIGH - Firefox is commonly used to access untrusted internet content, making exploitation highly probable.
🏢 Internal Only: MEDIUM - Internal users may encounter malicious content via emails or compromised internal sites.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Memory corruption vulnerabilities in browsers are frequently weaponized. The CVSS 9.8 score indicates high exploitability.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firefox 126

Vendor Advisory: https://www.mozilla.org/security/advisories/mfsa2024-21/

Restart Required: Yes

Instructions:

1. Open Firefox. 2. Click menu → Help → About Firefox. 3. Firefox will check for updates and install Firefox 126. 4. Restart Firefox when prompted.

🔧 Temporary Workarounds

Disable JavaScript

all

Temporarily disable JavaScript to reduce attack surface while patching

about:config → javascript.enabled = false

Use Alternative Browser

all

Switch to updated alternative browser until Firefox is patched

🧯 If You Can't Patch

  • Network segmentation to restrict Firefox access to critical systems
  • Implement application whitelisting to prevent unauthorized code execution

🔍 How to Verify

Check if Vulnerable:

Check Firefox version in menu → Help → About Firefox. If version is below 126, system is vulnerable.

Check Version:

firefox --version

Verify Fix Applied:

Confirm Firefox version is 126 or higher in About Firefox dialog.

📡 Detection & Monitoring

Log Indicators:

  • Firefox crash reports with memory access violations
  • Unexpected Firefox child processes

Network Indicators:

  • Unusual outbound connections from Firefox process
  • Traffic to known exploit hosting domains

SIEM Query:

process_name="firefox.exe" AND (event_id=1000 OR event_id=1001) AND memory_access_violation

📊 Metadata

CVE ID: CVE-2024-4778
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-1260
Published: May 14, 2024
Last Updated: April 4, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-4778, you might also want to check these:

CVE-2025-22889 7.9

This vulnerability in Intel Xeon 6 processors with TDX (Trust Domain Extensions) allows a privileged...

Same vulnerability type (CWE-1260)
CVE-2019-1164 7.8

This Windows kernel vulnerability allows authenticated attackers to escalate privileges to kernel mo...

Same vulnerability type (CWE-1260)