Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 236
BDU:2023-02923
Уязвимость функции EncodeAlphaInternal() библиотеки libwebp для кодирования и декодирования изображений в формате WebP браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2023:0468-1
Security update for mozilla-nss
SUSE-SU-2023:0443-1
Security update for mozilla-nss
GHSA-2q49-5v6q-6qr6
Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed.
GHSA-4mgq-9qgw-ghcx
The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.
CVE-2020-12413
The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.
CVE-2020-12413
The Raccoon attack is a timing attack on DHE ciphersuites inherit in t ...
CVE-2019-17003
Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed.
CVE-2020-12413
The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.
CVE-2019-17003
Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | BDU:2023-02923 Уязвимость функции EncodeAlphaInternal() библиотеки libwebp для кодирования и декодирования изображений в формате WebP браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 1% Низкий | почти 3 года назад |
 | SUSE-SU-2023:0468-1 Security update for mozilla-nss | 0% Низкий | почти 3 года назад | |
| SUSE-SU-2023:0443-1 Security update for mozilla-nss | 0% Низкий | почти 3 года назад | |
| GHSA-2q49-5v6q-6qr6 Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
| GHSA-4mgq-9qgw-ghcx The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites. | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
 | CVE-2020-12413 The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites. | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
| CVE-2020-12413 The Raccoon attack is a timing attack on DHE ciphersuites inherit in t ... | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
| CVE-2019-17003 Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
 | CVE-2020-12413 The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites. | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
| CVE-2019-17003 Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
Уязвимостей на страницу