Mozilla Firefox — свободный браузер на движке Gecko

Релизный цикл, информация об уязвимостях

Продукт: Mozilla Firefox

Вендор: mozilla

График релизов

Недавние уязвимости Mozilla Firefox

Количество 15 220

CVE-2024-3857

больше 1 года назад

The JIT created incorrect code for arguments in certain cases. This led to potential use-after-free crashes during garbage collection. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

CVSS3: 7.8

EPSS: Низкий

CVE-2024-3857

больше 1 года назад

The JIT created incorrect code for arguments in certain cases. This le ...

CVSS3: 7.8

EPSS: Низкий

CVE-2024-3856

больше 1 года назад

A use-after-free could occur during WASM execution if garbage collection ran during the creation of an array. This vulnerability affects Firefox < 125.

CVSS3: 8.8

EPSS: Низкий

CVE-2024-3856

больше 1 года назад

A use-after-free could occur during WASM execution if garbage collecti ...

CVSS3: 8.8

EPSS: Низкий

CVE-2024-3855

больше 1 года назад

In certain cases the JIT incorrectly optimized MSubstr operations, which led to out-of-bounds reads. This vulnerability affects Firefox < 125.

CVSS3: 6.5

EPSS: Низкий

CVE-2024-3855

больше 1 года назад

In certain cases the JIT incorrectly optimized MSubstr operations, whi ...

CVSS3: 6.5

EPSS: Низкий

CVE-2024-3854

больше 1 года назад

In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.

CVSS3: 8.8

EPSS: Низкий

CVE-2024-3854

больше 1 года назад

In some code patterns the JIT incorrectly optimized switch statements ...

CVSS3: 8.8

EPSS: Низкий

CVE-2024-3853

больше 1 года назад

A use-after-free could result if a JavaScript realm was in the process of being initialized when a garbage collection started. This vulnerability affects Firefox < 125.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-3853

больше 1 года назад

A use-after-free could result if a JavaScript realm was in the process ...

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2024-3857 The JIT created incorrect code for arguments in certain cases. This led to potential use-after-free crashes during garbage collection. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.	CVSS3: 7.8	0% Низкий	больше 1 года назад
CVE-2024-3857 The JIT created incorrect code for arguments in certain cases. This le ...	CVSS3: 7.8	0% Низкий	больше 1 года назад
CVE-2024-3856 A use-after-free could occur during WASM execution if garbage collection ran during the creation of an array. This vulnerability affects Firefox < 125.	CVSS3: 8.8	1% Низкий	больше 1 года назад
CVE-2024-3856 A use-after-free could occur during WASM execution if garbage collecti ...	CVSS3: 8.8	1% Низкий	больше 1 года назад
CVE-2024-3855 In certain cases the JIT incorrectly optimized MSubstr operations, which led to out-of-bounds reads. This vulnerability affects Firefox < 125.	CVSS3: 6.5	0% Низкий	больше 1 года назад
CVE-2024-3855 In certain cases the JIT incorrectly optimized MSubstr operations, whi ...	CVSS3: 6.5	0% Низкий	больше 1 года назад
CVE-2024-3854 In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability affects Firefox < 125, Firefox ESR < 115.10, and Thunderbird < 115.10.	CVSS3: 8.8	1% Низкий	больше 1 года назад
CVE-2024-3854 In some code patterns the JIT incorrectly optimized switch statements ...	CVSS3: 8.8	1% Низкий	больше 1 года назад
CVE-2024-3853 A use-after-free could result if a JavaScript realm was in the process of being initialized when a garbage collection started. This vulnerability affects Firefox < 125.	CVSS3: 7.5	0% Низкий	больше 1 года назад
CVE-2024-3853 A use-after-free could result if a JavaScript realm was in the process ...	CVSS3: 7.5	0% Низкий	больше 1 года назад

Уязвимостей на страницу