CVE-2026-24869

Опубликовано: 27 янв. 2026

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

Use-after-free in the Layout: Scrolling and Overflow component. This vulnerability affects Firefox < 147.0.2.

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Layout: Scrolling and Overflow component

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 10	firefox	Not affected
Red Hat Enterprise Linux 10	rhel10/firefox-flatpak	Not affected
Red Hat Enterprise Linux 6	firefox	Not affected
Red Hat Enterprise Linux 7	firefox	Not affected
Red Hat Enterprise Linux 8	firefox	Not affected
Red Hat Enterprise Linux 9	firefox	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=2433424firefox: Use-after-free in the Layout: Scrolling and Overflow component

EPSS

Процентиль: 15%

0.00049

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2026-24869

CVSS3: 8.8

ubuntu

2 месяца назад

Use-after-free in the Layout: Scrolling and Overflow component. This vulnerability affects Firefox < 147.0.2.

CVE-2026-24869

CVSS3: 8.8

nvd

2 месяца назад

Use-after-free in the Layout: Scrolling and Overflow component. This vulnerability affects Firefox < 147.0.2.

CVE-2026-24869

CVSS3: 8.8

debian

2 месяца назад

Use-after-free in the Layout: Scrolling and Overflow component. This v ...

GHSA-5hpc-pqrr-8j6m

CVSS3: 8.1

github

2 месяца назад

Use-after-free in the Layout: Scrolling and Overflow component. This vulnerability affects Firefox < 147.0.2.

BDU:2026-00970

CVSS3: 8.1

fstec

2 месяца назад

Уязвимость компонента Layout: Scrolling and Overflow браузера Mozilla Firefox, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 15%

0.00049

Низкий

7.5 High

CVSS3