June 27, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
CVE-2024-36473 – Trend Micro VPN Proxy One Pro Zero-Day Vulnerability
June 12, 2024
Advanced Data Theft Techniques Used by China-Linked ValleyRAT Malware – Active IOCs
June 12, 2024
CVE-2024-36473 – Trend Micro VPN Proxy One Pro Zero-Day Vulnerability
June 12, 2024
Advanced Data Theft Techniques Used by China-Linked ValleyRAT Malware – Active IOCs
June 12, 2024
Severity
High
Analysis Summary
CVE-2024-5700 CVSS:8.8
Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability using unknown attack vectors to execute arbitrary code on the vulnerable system or cause a denial of service.
CVE-2024-5701 CVSS:8.8
Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability using unknown attack vectors to execute arbitrary code on the vulnerable system or cause a denial of service.
Impact
- Gain Access
Indicators of Compromise
CVE
- CVE-2024-5700
- CVE-2024-5701
Affected Vendors
Mozilla
Affected Products
- Mozilla Firefox ESR 115.11
- Mozilla Firefox 126.0
Remediation
Refer to Mozilla Foundation Security Advisory for patch, upgrade or suggested workaround information.