{"uuid": "b4df93c5-d907-4219-81d1-5f88bac9eda0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9680", "type": "exploited", "source": "https://t.me/DarkWebInformer_CVEAlerts/3883", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-9680\n\ud83c\udfe2 Vendor: Mozilla\n\ud83d\udda5\ufe0f Product: Firefox\n\ud83d\udd39 Description: Mozilla Firefox and Firefox ESR contain a use-after-free vulnerability in Animation timelines that allows for code execution in the content process.\n\ud83d\udccf Published: 2024-10-09T00:00:00Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json\n2. https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit\n3. https://www.mozilla.org/en-US/security/advisories/mfsa2024-51/\n4. https://blog.mozilla.org/security/2024/10/11/behind-the-scenes-fixing-an-in-the-wild-firefox-exploit/\n5. https://www.eset.com/int/about/newsroom/press-releases/research/eset-research-discovers-mozilla-and-windows-zero-day-zero-click-vulnerabilities-exploited-by-russia-aligned-romcom-apt-group/\n6. https://www.welivesecurity.com/en/eset-research/romcom-exploits-firefox-and-windows-zero-days-in-the-wild/\n7. https://45734016.fs1.hubspotusercontent-na1.net/hubfs/45734016/GLOBAL%20CYBER%20THREAT%20REPORT%202024%20.pdf\n8. https://www.cyfirma.com/research/apt-quarterly-highlights-q4-2024/", "creation_timestamp": "2025-02-08T23:20:28.000000Z"}