Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 151
BDU:2025-12848
Уязвимость компонента Canvas2D браузера Mozilla Firefox, связанная с недостатками разграничения доступа изолированной среды, позволяющая нарушителю выполнить произвольный код
GHSA-wjhw-rxqj-2g2h
This vulnerability affects Firefox < 143, Firefox ESR < 115.28, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
GHSA-74x5-q3v4-qjxx
This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
GHSA-579p-jcg6-h5r2
Memory safety bugs present in Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
GHSA-h6qg-7fq8-gw5h
This vulnerability affects Firefox < 143 and Thunderbird < 143.
GHSA-f2wr-3fjg-j32f
This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
GHSA-gwf4-vcvc-4rjv
This vulnerability affects Firefox < 143.
GHSA-9qv5-m6vr-vh73
This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
GHSA-5qj7-cv36-4gxh
This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
GHSA-hmr9-3q48-52hr
This vulnerability affects Firefox < 143 and Thunderbird < 143.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | BDU:2025-12848 Уязвимость компонента Canvas2D браузера Mozilla Firefox, связанная с недостатками разграничения доступа изолированной среды, позволяющая нарушителю выполнить произвольный код | CVSS3: 6.3 | 0% Низкий | около 1 месяца назад |
| GHSA-wjhw-rxqj-2g2h This vulnerability affects Firefox < 143, Firefox ESR < 115.28, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
| GHSA-74x5-q3v4-qjxx This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | CVSS3: 8.4 | 0% Низкий | около 2 месяцев назад |
| GHSA-579p-jcg6-h5r2 Memory safety bugs present in Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
| GHSA-h6qg-7fq8-gw5h This vulnerability affects Firefox < 143 and Thunderbird < 143. | CVSS3: 5.4 | 0% Низкий | около 2 месяцев назад |
| GHSA-f2wr-3fjg-j32f This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | CVSS3: 6.5 | 0% Низкий | около 2 месяцев назад |
| GHSA-gwf4-vcvc-4rjv This vulnerability affects Firefox < 143. | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
| GHSA-9qv5-m6vr-vh73 This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | CVSS3: 6.5 | 0% Низкий | около 2 месяцев назад |
| GHSA-5qj7-cv36-4gxh This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | CVSS3: 7.3 | 0% Низкий | около 2 месяцев назад |
| GHSA-hmr9-3q48-52hr This vulnerability affects Firefox < 143 and Thunderbird < 143. | CVSS3: 6.5 | 0% Низкий | около 2 месяцев назад |
Уязвимостей на страницу