Логотип exploitDog
product: "firefox"
Консоль
Логотип exploitDog

exploitDog

product: "firefox"
Mozilla Firefox

Mozilla Firefoxсвободный браузер на движке Gecko

Релизный цикл, информация об уязвимостях

Продукт: Mozilla Firefox
Вендор: mozilla

График релизов

11511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614720232024202520262027

Недавние уязвимости Mozilla Firefox

Количество 15 501

github логотип

GHSA-hr59-q2gm-7hrj

больше 1 года назад

A nested iframe, triggering a cross-site navigation, could send SameSite=Strict or Lax cookies. This vulnerability affects Firefox < 128.

CVSS3: 9.8
EPSS: Низкий
github логотип

GHSA-3wq7-w8r7-pmvh

больше 1 года назад

Clipboard code failed to check the index on an array access. This could have lead to an out-of-bounds read. This vulnerability affects Firefox < 128.

CVSS3: 9.8
EPSS: Низкий
github логотип

GHSA-cpfv-mr66-74v6

больше 1 года назад

Firefox Android allowed immediate interaction with permission prompts. This could be used for tapjacking. This vulnerability affects Firefox < 128.

CVSS3: 8.8
EPSS: Низкий
github логотип

GHSA-j476-hf2q-984g

больше 1 года назад

In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption. This vulnerability affects Firefox < 128 and Firefox ESR < 115.13.

CVSS3: 7.4
EPSS: Низкий
github логотип

GHSA-v6r5-wp7h-cj77

больше 1 года назад

A mismatch between allocator and deallocator could have lead to memory corruption. This vulnerability affects Firefox < 128 and Firefox ESR < 115.13.

CVSS3: 9.8
EPSS: Низкий
github логотип

GHSA-fj5c-r5jw-5wp8

больше 1 года назад

The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. This vulnerability affects Firefox < 128.

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-h7q8-vff8-p3j8

больше 1 года назад

The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. This vulnerability affects Firefox < 128.

CVSS3: 4.3
EPSS: Низкий
github логотип

GHSA-rjwc-235r-8986

больше 1 года назад

A race condition could lead to a cross-origin container obtaining permissions of the top-level origin. This vulnerability affects Firefox < 128 and Firefox ESR < 115.13.

CVSS3: 4.7
EPSS: Низкий
nvd логотип

CVE-2024-6615

больше 1 года назад

Memory safety bugs present in Firefox 127 and Thunderbird 127. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 128 and Thunderbird < 128.

CVSS3: 8.8
EPSS: Низкий
debian логотип

CVE-2024-6615

больше 1 года назад

Memory safety bugs present in Firefox 127 and Thunderbird 127. Some of ...

CVSS3: 8.8
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
1
github логотип
GHSA-hr59-q2gm-7hrj

A nested iframe, triggering a cross-site navigation, could send SameSite=Strict or Lax cookies. This vulnerability affects Firefox < 128.

CVSS3: 9.8
1%
Низкий
больше 1 года назад
github логотип
GHSA-3wq7-w8r7-pmvh

Clipboard code failed to check the index on an array access. This could have lead to an out-of-bounds read. This vulnerability affects Firefox < 128.

CVSS3: 9.8
0%
Низкий
больше 1 года назад
github логотип
GHSA-cpfv-mr66-74v6

Firefox Android allowed immediate interaction with permission prompts. This could be used for tapjacking. This vulnerability affects Firefox < 128.

CVSS3: 8.8
1%
Низкий
больше 1 года назад
github логотип
GHSA-j476-hf2q-984g

In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption. This vulnerability affects Firefox < 128 and Firefox ESR < 115.13.

CVSS3: 7.4
0%
Низкий
больше 1 года назад
github логотип
GHSA-v6r5-wp7h-cj77

A mismatch between allocator and deallocator could have lead to memory corruption. This vulnerability affects Firefox < 128 and Firefox ESR < 115.13.

CVSS3: 9.8
1%
Низкий
больше 1 года назад
github логотип
GHSA-fj5c-r5jw-5wp8

The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. This vulnerability affects Firefox < 128.

CVSS3: 5.5
0%
Низкий
больше 1 года назад
github логотип
GHSA-h7q8-vff8-p3j8

The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. This vulnerability affects Firefox < 128.

CVSS3: 4.3
0%
Низкий
больше 1 года назад
github логотип
GHSA-rjwc-235r-8986

A race condition could lead to a cross-origin container obtaining permissions of the top-level origin. This vulnerability affects Firefox < 128 and Firefox ESR < 115.13.

CVSS3: 4.7
0%
Низкий
больше 1 года назад
nvd логотип
CVE-2024-6615

Memory safety bugs present in Firefox 127 and Thunderbird 127. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 128 and Thunderbird < 128.

CVSS3: 8.8
1%
Низкий
больше 1 года назад
debian логотип
CVE-2024-6615

Memory safety bugs present in Firefox 127 and Thunderbird 127. Some of ...

CVSS3: 8.8
1%
Низкий
больше 1 года назад

Уязвимостей на страницу


Поделиться