Exploit for #VU89537 Type Confusion in Mozilla products
Vulnerability identifier: #VU89537
Vulnerability risk: High
CVSSv3.1: 7.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-843
Exploitation vector: Network
Exploits in database: 6
- June 21, 2024
- pdfjs-vuln-demo (This project is intended to serve as a proof of concept to demonstrate exploiting the vulnerability in the PDF.js (pdfjs-dist) library reported in CVE-2024-4367) [Github]
- CVE-2024-4367-PoC [Github]
- PDFernetRemotelo (PoC - Prueba de Concepto de CVE-2024-4367 en conjunto al CVE-2023-38831 en un solo Script) [Github]
- June 14, 2024
- cve-2024-4367-PoC-fixed [Github]
- May 23, 2024
- CVE-2024-4367-POC [Github]
- detect-cve-2024-4367 [Github]
Impact: Code execution
Vulnerable software:
Mozilla Firefox
Client/Desktop applications /
Web browsers
Firefox ESR
Client/Desktop applications /
Web browsers
Firefox for Android
Mobile applications /
Apps for mobile phones
Vendor: Mozilla
