SUSE update for MozillaThunderbird
| Risk | Critical |
| Patch available | YES |
| Number of vulnerabilities | 12 |
| CVE-ID | CVE-2024-8900 CVE-2024-9392 CVE-2024-9393 CVE-2024-9394 CVE-2024-9396 CVE-2024-9397 CVE-2024-9398 CVE-2024-9399 CVE-2024-9400 CVE-2024-9401 CVE-2024-9402 CVE-2024-9680 |
| CWE-ID | CWE-264 CWE-254 CWE-119 CWE-357 CWE-200 CWE-20 CWE-400 CWE-416 |
| Exploitation vector | Network |
| Public exploit | Vulnerability #12 is being exploited in the wild. |
| Vulnerable software |
SUSE Linux Enterprise Workstation Extension 15 Operating systems & Components / Operating system SUSE Package Hub 15 Operating systems & Components / Operating system SUSE Linux Enterprise Real Time 15 Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 SP4 LTSS Operating systems & Components / Operating system SUSE Linux Enterprise Micro Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 Operating systems & Components / Operating system MozillaThunderbird-debuginfo Operating systems & Components / Operating system package or component MozillaThunderbird-translations-other Operating systems & Components / Operating system package or component MozillaThunderbird-debugsource Operating systems & Components / Operating system package or component MozillaThunderbird-translations-common Operating systems & Components / Operating system package or component MozillaThunderbird Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 12 vulnerabilities.
1) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU97920
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-8900
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to application does not properly impose security restrictions. A remote attacker can write data to the user's clipboard, bypassing the user prompt, during a certain sequence of navigational events.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Security features bypass
EUVDB-ID: #VU97916
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9392
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to an unspecified error. A compromised content process perform arbitrary loading of cross-origin pages.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU97917
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9393
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to application does not properly impose security restrictions. A remote attacker can use a specially crafted multipart response to execute arbitrary JavaScript under the resource://pdf.js origin and access cross-origin PDF content.
Note, this access is limited to "same site" documents by the Site Isolation feature on desktop clients, however the full cross-origin access is possible on Android installations.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU97918
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9394
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to application does not properly impose security restrictions. A remote attacker can send a specially crafted multipart response and execute arbitrary JavaScript under the resource://devtools origin. This could allow them to access cross-origin JSON content.
Note, this access is limited to "same site" documents by the Site Isolation feature on desktop clients, however full cross-origin access is possible on Android.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Buffer overflow
EUVDB-ID: #VU97921
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9396
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when cloning certain objects. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Insufficient UI Warning of Dangerous Operations
EUVDB-ID: #VU97922
Risk: Low
CVSSv3.1: 3.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9397
CWE-ID:
CWE-357 - Insufficient UI Warning of Dangerous Operations
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform clickjacking attacks.
The vulnerability exists due to a missing delay in directory upload UI. A remote attacker can trick a user into granting permission via clickjacking.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Information disclosure
EUVDB-ID: #VU97923
Risk: Low
CVSSv3.1: 2.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9398
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a possibility to enumerate protocol handlers via the window.open() call. A remote attacker can enumerate installed applications on the system.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Input validation error
EUVDB-ID: #VU97924
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9399
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input when handling WebTransport. A remote attacker can trick the victim into visiting a specially crafted website and crash the browser.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Resource exhaustion
EUVDB-ID: #VU97925
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9400
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources during JIT compilation. A remote attacker can crash the browser.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Buffer overflow
EUVDB-ID: #VU97919
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9401
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into visiting it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Buffer overflow
EUVDB-ID: #VU97926
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-9402
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing HTML content. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Use-after-free
EUVDB-ID: #VU98333
Risk: Critical
CVSSv3.1: 8.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]
CVE-ID: CVE-2024-9680
CWE-ID:
CWE-416 - Use After Free
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error in Animation timeline. A remote attacker can trick the victim into visiting a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.
Note, the vulnerability is being actively exploited in the wild.
Update the affected package MozillaThunderbird to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Workstation Extension 15: SP5 - SP6
SUSE Package Hub 15: 15-SP5 - 15-SP6
SUSE Linux Enterprise Real Time 15: SP5 - SP6
openSUSE Leap: 15.5 - 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP5 - SP6
SUSE Linux Enterprise Server 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15: SP5 - SP6
SUSE Linux Enterprise Desktop 15 SP4 LTSS: 15-SP4
SUSE Linux Enterprise Micro: 5.5
SUSE Linux Enterprise High Performance Computing 15: SP5
MozillaThunderbird-debuginfo: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-other: before 128.3.0-150200.8.182.1
MozillaThunderbird-debugsource: before 128.3.0-150200.8.182.1
MozillaThunderbird-translations-common: before 128.3.0-150200.8.182.1
MozillaThunderbird: before 128.3.0-150200.8.182.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15_sp4_ltss:15-SP4:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:mozillathunderbird-debuginfo:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-other:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-debugsource:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird-translations-common:*:*:*:*:*:suse_linux:*:
- cpe:2.3:o:suse:mozillathunderbird:*:*:*:*:*:suse_linux:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20243629-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
Yes. This vulnerability is being exploited in the wild.
