{"id":"CVE-2024-10466","details":"By sending a specially crafted push message, a remote server could have hung the parent process, causing the browser to become unresponsive. This vulnerability affects Firefox \u003c 132, Firefox ESR \u003c 128.4, Thunderbird \u003c 128.4, and Thunderbird \u003c 132.","modified":"2026-04-16T04:34:13.769359019Z","published":"2024-10-29T13:15:04.273Z","related":["ALSA-2024:8726","ALSA-2024:8729","ALSA-2024:8790","ALSA-2024:8793","ALSA-2024:9552","ALSA-2024:9554","CGA-vhrx-2p5h-h735","SUSE-SU-2024:3898-1","SUSE-SU-2024:3899-1","SUSE-SU-2024:4050-1","openSUSE-SU-2024:14438-1","openSUSE-SU-2024:14461-1","openSUSE-SU-2024:14483-1","openSUSE-SU-2024:14572-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/10/msg00034.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/11/msg00001.html"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-55/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-56/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-58/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2024-59/"},{"type":"REPORT","url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1924154"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-10466.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"128.4.0"}]},{"events":[{"introduced":"0"},{"fixed":"132.0"}]},{"events":[{"introduced":"0"},{"fixed":"128.4.0"}]},{"events":[{"introduced":"129.0"},{"fixed":"132.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}