Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 501
GHSA-96f5-9x27-7hhh
Clickjacking issue, information disclosure in the PDF Viewer component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7.
GHSA-x4m4-qvvc-5xcm
Use-after-free in the IPC component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, and Firefox ESR < 140.7.
GHSA-jvj8-3g49-f23w
Sandbox escape due to integer overflow in the Graphics component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, and Firefox ESR < 140.7.
GHSA-qc2q-rhvg-9278
Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7.
GHSA-fqpc-v68g-xp98
Information disclosure in the Networking component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7.
GHSA-jmj2-8j2p-hmq6
Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7.
GHSA-3m78-88vj-q2rf
Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 147.
GHSA-cw2j-6pvw-7g9v
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147.
GHSA-94r2-4g95-pg9m
Information disclosure in the XML component. This vulnerability affects Firefox < 147.
GHSA-4m35-v3c2-29x8
Denial-of-service in the DOM: Service Workers component. This vulnerability affects Firefox < 147.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-96f5-9x27-7hhh Clickjacking issue, information disclosure in the PDF Viewer component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7. | CVSS3: 5.3 | 0% Низкий | 27 дней назад |
| GHSA-x4m4-qvvc-5xcm Use-after-free in the IPC component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, and Firefox ESR < 140.7. | CVSS3: 8.8 | 0% Низкий | 27 дней назад |
| GHSA-jvj8-3g49-f23w Sandbox escape due to integer overflow in the Graphics component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, and Firefox ESR < 140.7. | CVSS3: 8.8 | 0% Низкий | 27 дней назад |
| GHSA-qc2q-rhvg-9278 Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7. | CVSS3: 8 | 0% Низкий | 27 дней назад |
| GHSA-fqpc-v68g-xp98 Information disclosure in the Networking component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7. | CVSS3: 5.3 | 0% Низкий | 27 дней назад |
| GHSA-jmj2-8j2p-hmq6 Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7. | CVSS3: 9.8 | 0% Низкий | 27 дней назад |
| GHSA-3m78-88vj-q2rf Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 147. | CVSS3: 9.8 | 0% Низкий | 27 дней назад |
| GHSA-cw2j-6pvw-7g9v Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147. | CVSS3: 10 | 0% Низкий | 27 дней назад |
| GHSA-94r2-4g95-pg9m Information disclosure in the XML component. This vulnerability affects Firefox < 147. | CVSS3: 5.3 | 0% Низкий | 27 дней назад |
| GHSA-4m35-v3c2-29x8 Denial-of-service in the DOM: Service Workers component. This vulnerability affects Firefox < 147. | CVSS3: 7.5 | 0% Низкий | 27 дней назад |
Уязвимостей на страницу