Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 501
CVE-2024-4776
A file dialog shown while in full-screen mode could have resulted in t ...
CVE-2024-4775
An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior. *Note:* This issue only affects the application when the profiler is running. This vulnerability affects Firefox < 126.
CVE-2024-4775
An iterator stop condition was missing when handling WASM code in the ...
CVE-2024-4774
The `ShmemCharMapHashEntry()` code was susceptible to potentially undefined behavior by bypassing the move semantics for one of its data members. This vulnerability affects Firefox < 126.
CVE-2024-4774
The `ShmemCharMapHashEntry()` code was susceptible to potentially unde ...
CVE-2024-4773
When a network error occurred during page load, the prior content could have remained in view with a blank URL bar. This could have been used to obfuscate a spoofed web site. This vulnerability affects Firefox < 126.
CVE-2024-4773
When a network error occurred during page load, the prior content coul ...
CVE-2024-4772
An HTTP digest authentication nonce value was generated using `rand()` which could lead to predictable values. This vulnerability affects Firefox < 126.
CVE-2024-4772
An HTTP digest authentication nonce value was generated using `rand()` ...
CVE-2024-4771
A memory allocation check was missing which would lead to a use-after-free if the allocation failed. This could have triggered a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox < 126.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2024-4776 A file dialog shown while in full-screen mode could have resulted in t ... | CVSS3: 8.2 | 1% Низкий | больше 1 года назад |
 | CVE-2024-4775 An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior. *Note:* This issue only affects the application when the profiler is running. This vulnerability affects Firefox < 126. | CVSS3: 5.9 | 0% Низкий | больше 1 года назад |
| CVE-2024-4775 An iterator stop condition was missing when handling WASM code in the ... | CVSS3: 5.9 | 0% Низкий | больше 1 года назад |
| CVE-2024-4774 The `ShmemCharMapHashEntry()` code was susceptible to potentially undefined behavior by bypassing the move semantics for one of its data members. This vulnerability affects Firefox < 126. | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-4774 The `ShmemCharMapHashEntry()` code was susceptible to potentially unde ... | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-4773 When a network error occurred during page load, the prior content could have remained in view with a blank URL bar. This could have been used to obfuscate a spoofed web site. This vulnerability affects Firefox < 126. | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-4773 When a network error occurred during page load, the prior content coul ... | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-4772 An HTTP digest authentication nonce value was generated using `rand()` which could lead to predictable values. This vulnerability affects Firefox < 126. | CVSS3: 5.9 | 0% Низкий | больше 1 года назад |
| CVE-2024-4772 An HTTP digest authentication nonce value was generated using `rand()` ... | CVSS3: 5.9 | 0% Низкий | больше 1 года назад |
| CVE-2024-4771 A memory allocation check was missing which would lead to a use-after-free if the allocation failed. This could have triggered a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox < 126. | CVSS3: 8.6 | 1% Низкий | больше 1 года назад |
Уязвимостей на страницу