Firefox Zero-Day Under Attack: Update Your Browser Immediately
thehackernews.com
Mozilla urges users to update Firefox after critical CVE-2024-9680 vulnerability is actively exploited.

In case someone missed this (i did :(, story from a week ago), forks also should be updated by now meow-floppy

Mozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come under active exploitation in the wild.

The vulnerability, tracked as CVE-2024-9680 (CVSS score: 9.8), has been described as a use-after-free bug in the Animation timeline component.

The issue has been addressed in the following versions of the web browser -

Firefox 131.0.2
Firefox ESR 128.3.1, and
Firefox ESR 115.16.1.
  • quarrk [he/him]@hexbear.netEnglish
    4·
    13 hours ago

    Windows was the largest and it sucked at security. It’s better today but the reputation is still well deserved.