
A dangerous vulnerability has been discovered in the Firefox browser that is actively being exploited. Users are advised to update their browsers immediately to avoid threats.
Mozilla has issued an urgent warning about the CVE-2024-9680 vulnerability in Firefox, which is already being actively exploited by attackers. The vulnerability is related to a use-after-free bug in the animation component that allows remote code execution on the victim’s computer. This can be used for various attacks, including “watering hole” or downloading malware through fake sites.
Damien Schaffer a researcher at ESET, was the first to discover this vulnerability, and it has already been patched in the latest versions of the browser: Firefox 131.0.2, Firefox ESR 128.3.1 and Firefox ESR 115.16.1. There are currently no details on exactly how this vulnerability is used in actual attacks or who is behind it.
A vulnerability in Firefox has caused serious concern in the cyber security world. Mozilla warned about the active use of this vulnerability, which allows attackers to gain control over the computers of users who have not updated the browser. This type of vulnerability can become a tool in mass attacks, such as through fake websites that use users to download malicious files.
It is important for Firefox and Firefox ESR users to update their browsers to the latest versions to protect against potential attacks related to the CVE-2024-9680 vulnerability. Cyberattacks are becoming increasingly sophisticated, so regular software updates are a critical step to staying safe. All users are advised to update their browsers immediately to protect against attacks.