Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 225
CVE-2023-29536
An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.
CVE-2023-29536
An attacker could cause the memory manager to incorrectly free a point ...
CVE-2023-29535
Following a Garbage Collector compaction, weak maps may have been accessed before they were correctly traced. This resulted in memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.
CVE-2023-29535
Following a Garbage Collector compaction, weak maps may have been acce ...
CVE-2023-29533
A website could have obscured the fullscreen notification by using a combination of <code>window.open</code>, fullscreen requests, <code>window.name</code> assignments, and <code>setInterval</code> calls. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.
CVE-2023-29533
A website could have obscured the fullscreen notification by using a c ...
CVE-2023-28177
Memory safety bugs present in Firefox 110. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 111.
CVE-2023-28177
Memory safety bugs present in Firefox 110. Some of these bugs showed e ...
CVE-2023-28176
Memory safety bugs present in Firefox 110 and Firefox ESR 102.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.
CVE-2023-28176
Memory safety bugs present in Firefox 110 and Firefox ESR 102.8. Some ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2023-29536 An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10. | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
| CVE-2023-29536 An attacker could cause the memory manager to incorrectly free a point ... | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
| CVE-2023-29535 Following a Garbage Collector compaction, weak maps may have been accessed before they were correctly traced. This resulted in memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10. | CVSS3: 6.5 | 0% Низкий | больше 2 лет назад |
| CVE-2023-29535 Following a Garbage Collector compaction, weak maps may have been acce ... | CVSS3: 6.5 | 0% Низкий | больше 2 лет назад |
| CVE-2023-29533 A website could have obscured the fullscreen notification by using a combination of <code>window.open</code>, fullscreen requests, <code>window.name</code> assignments, and <code>setInterval</code> calls. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10. | CVSS3: 4.3 | 0% Низкий | больше 2 лет назад |
| CVE-2023-29533 A website could have obscured the fullscreen notification by using a c ... | CVSS3: 4.3 | 0% Низкий | больше 2 лет назад |
| CVE-2023-28177 Memory safety bugs present in Firefox 110. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 111. | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
| CVE-2023-28177 Memory safety bugs present in Firefox 110. Some of these bugs showed e ... | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
| CVE-2023-28176 Memory safety bugs present in Firefox 110 and Firefox ESR 102.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9. | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
| CVE-2023-28176 Memory safety bugs present in Firefox 110 and Firefox ESR 102.8. Some ... | CVSS3: 8.8 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу