SARA / Free Tools / CVE / CVE-2024-9680

CVE-2024-9680 — Mozilla Firefox Use-After-Free Vulnerability

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild. This vulnerability affects Firefox < 131.0.2, Firefox ESR < 128.3.1, Firefox E

CVSS
EPSS
30.81% (top 3.30%)
CWE
Published
2024-10-09T12:59:07.108Z
Last modified
2025-11-03T22:33:32.973Z
CVSS vector
CISA KEV — Actively Exploited
Added to KEV
2024-10-15
BOD 22-01 due
2024-11-05
Ransomware use
Known
View KEV detail
CVE-2024-9680 on CISA KEV →

01What is this vulnerability?

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild. This vulnerability affects Firefox < 131.0.2, Firefox ESR < 128.3.1, Firefox ESR < 115.16.1, Thunderbird < 131.0.1, Thunderbird < 128.3.1, and Thunderbird < 115.16.0.

02Affected products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefox ESRunspecified
MozillaFirefox ESRunspecified
MozillaThunderbirdunspecified
MozillaThunderbirdunspecified
MozillaThunderbirdunspecified

03Active exploitation status

Yes — actively exploited. Added to the CISA KEV catalog on 2024-10-15. Ransomware use: Known.

04Recommended remediation

05Technical details

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

06Detection signatures

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

Open in Sigma generator →

07Related CVEs

CVE-2024-49039
Cited in vendor advisory

08Timeline

09References

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.
Read the API reference →
EPSS detail → Search KEV → Ask SARA →