Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 501
SUSE-SU-2023:0443-1
Security update for mozilla-nss
GHSA-2q49-5v6q-6qr6
Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed.
GHSA-4mgq-9qgw-ghcx
The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.
CVE-2020-12413
The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.
CVE-2020-12413
The Raccoon attack is a timing attack on DHE ciphersuites inherit in t ...
CVE-2019-17003
Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed.
CVE-2019-17003
Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed.
CVE-2020-12413
The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.
SUSE-SU-2023:0434-1
Security update for mozilla-nss
BDU:2023-01271
Уязвимость браузеров Mozilla Firefox, Mozilla Firefox ESR, почтового клиента Mozilla Thunderbird, связанная с неправильной нейтрализаций закодированных схем URI на веб-странице, позволяющая нарушителю загрузить файлы или взаимодействовать с программным обеспечением, уже установленным в системе
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | SUSE-SU-2023:0443-1 Security update for mozilla-nss | 0% Низкий | почти 3 года назад | |
| GHSA-2q49-5v6q-6qr6 Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
| GHSA-4mgq-9qgw-ghcx The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites. | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
 | CVE-2020-12413 The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites. | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
| CVE-2020-12413 The Raccoon attack is a timing attack on DHE ciphersuites inherit in t ... | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
| CVE-2019-17003 Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
 | CVE-2019-17003 Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
| CVE-2020-12413 The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites. | CVSS3: 5.9 | 0% Низкий | почти 3 года назад |
| SUSE-SU-2023:0434-1 Security update for mozilla-nss | 0% Низкий | почти 3 года назад | |
 | BDU:2023-01271 Уязвимость браузеров Mozilla Firefox, Mozilla Firefox ESR, почтового клиента Mozilla Thunderbird, связанная с неправильной нейтрализаций закодированных схем URI на веб-странице, позволяющая нарушителю загрузить файлы или взаимодействовать с программным обеспечением, уже установленным в системе | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
Уязвимостей на страницу