Lucene search
+L

324 matches found

OSV
OSV
added 2019/07/23 2:15 p.m.6 views

CVE-2019-11710

Mozilla developers and community members reported memory safety bugs present in Firefox 67. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 68...

9.8CVSS7.5AI score0.01719EPSS
Exploits0References7
OSV
OSV
added 2019/07/11 12:0 a.m.5 views

UBUNTU-CVE-2019-11710

Mozilla developers and community members reported memory safety bugs present in Firefox 67. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 68...

9.8CVSS7.4AI score0.01719EPSS
Exploits0References4
OSV
OSV
added 2019/02/28 6:29 p.m.4 views

CVE-2018-12406

Mozilla developers and community members reported memory safety bugs present in Firefox 63. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 64...

8.8CVSS7.4AI score0.0114EPSS
Exploits1References4
OSV
OSV
added 2019/02/28 6:29 p.m.5 views

CVE-2018-12405

Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects...

9.8CVSS9.8AI score
Exploits0References15
CNVD
CNVD
added 2018/12/14 12:0 a.m.3 views

Mozilla Firefox and Firefox ESR Memory Misreference Vulnerability (CNVD-2018-25867)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A memory misreference vulnerability exists in Mozilla Firefox versions prior to 64 and Firefox ES...

9.8CVSS9AI score0.09646EPSS
Exploits0References1
OSV
OSV
added 2018/06/27 12:0 a.m.2 views

UBUNTU-CVE-2018-5186

Memory safety bugs present in Firefox 60. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 61...

9.8CVSS7.4AI score0.02198EPSS
Exploits1References4
OSV
OSV
added 2018/06/11 9:29 p.m.3 views

CVE-2018-5151

Memory safety bugs were reported in Firefox 59. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 60...

9.8CVSS5.9AI score0.02756EPSS
Exploits0References5
OSV
OSV
added 2018/06/11 9:29 p.m.1 views

DEBIAN-CVE-2017-7826

Memory safety bugs were reported in Firefox 56 and Firefox ESR 52.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 57, Firefox ESR 52.5, and Thunderbird...

9.8CVSS9.4AI score0.03343EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/10/02 12:0 a.m.43 views

Debian DSA-3987-1 : firefox-esr - security update

Several security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, use-after-frees, buffer overflows and other implementation errors may lead to the execution of arbitrary code, denial of service, cross-site scripting or bypass of the phishing and malware...

10CVSS7.3AI score0.03641EPSS
Exploits3References11
CNVD
CNVD
added 2017/08/11 12:0 a.m.3 views

Mozilla Firefox and Firefox ESR Memory Misreference Vulnerability (CNVD-2017-22580)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A memory misreference vulnerability exists in Mozilla Firefox versions prior to 55 and Firefox ES...

9.8CVSS8.7AI score0.02677EPSS
Exploits1References1
CNVD
CNVD
added 2017/06/23 12:0 a.m.3 views

Mozilla Firefox and Firefox ESR Graphite 2 out-of-bounds read vulnerability (CNVD-2017-12546)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox.Graphite is a suite of enterprise-class open source system monitoring tools data mapping written i...

8.1CVSS6.7AI score0.01186EPSS
Exploits1References1
CNVD
CNVD
added 2017/03/16 12:0 a.m.3 views

Mozilla Firefox Memory Misreference Vulnerability (CNVD-2017-04176)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the U.S. Thunderbird is a mail tool adapted from the mail widget of the Mozilla browser. A memory misreference vulnerability exists in Mozilla Firefox, where when adding a range to an object in the DOM, the range...

9.8CVSS8.7AI score0.01721EPSS
Exploits0References1
CNVD
CNVD
added 2016/04/28 12:0 a.m.1 views

Mozilla Firefox and Firefox ESR memory corruption vulnerability (CNVD-2016-02688)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A memory corruption vulnerability exists in the browser engines of Mozilla Firefox and Firefox ES...

10CVSS9.2AI score0.04692EPSS
Exploits0References1
CNVD
CNVD
added 2015/08/19 12:0 a.m.1 views

Mozilla Firefox suffers from an unspecified memory corruption vulnerability (CNVD-2015-05435)

Mozilla Firefox is an open source WEB browser. An unspecified memory corruption vulnerability exists in Mozilla Firefox, which allows remote attackers to construct a malicious web page and trick users into parsing it, which could crash the application or execute arbitrary code...

10CVSS9.1AI score0.06435EPSS
Exploits0References1
OSV
OSV
added 2015/08/11 6:48 p.m.2 views

USN-2702-2 ubufox update

USN-2702-1 fixed vulnerabilities in Firefox. This update provides the corresponding updates for Ubufox. Original advisory details: Gary Kwong, Christian Holler, Byron Campen, Tyson Smith, Bobby Holley, Chris Coulson, and Eric Rahm discovered multiple memory safety issues in Firefox. If a user wer...

6.3AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/08/11 12:0 a.m.27 views

CVE-2015-4489

The nsTArrayImpl class in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 might allow remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging a self assignment...

7.5CVSS6.9AI score0.03636EPSS
Exploits0References4
Mozilla
Mozilla
added 2015/02/24 12:0 a.m.51 views

Buffer underflow during MP3 playback — Mozilla

Security researcher Atte Kettunen used the Address Sanitizer tool to discover a buffer underflow during audio playback of a badly formatted MP3 audio files. Through memory allocation manipulation it may be possible to incorporate parts of Firefox memory into an MP3 stream accessible to scripts on...

4.3CVSS9AI score0.01544EPSS
Exploits0References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2014/03/20 12:0 a.m.38 views

Debian DSA-2881-1 : iceweasel - security update

Multiple security issues have been found in Iceweasel, Debian's version of the Mozilla Firefox web browser: Multiple memory safety errors, out of bound reads, use-after-frees and other implementation errors may lead to the execution of arbitrary code, information disclosure, denial of service...

10CVSS7.8AI score0.83633EPSS
Exploits16References11
UbuntuCve
UbuntuCve
added 2013/06/25 12:0 a.m.27 views

CVE-2013-1684

Use-after-free vulnerability in the mozilla::dom::HTMLMediaElement::LookupMediaElementURITable function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to execute arbitrary code or cause a...

9.3CVSS7.5AI score0.03537EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2011/08/18 6:55 p.m.2 views

CVE-2011-2989

The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6, and possibly other products does not properly implement WebGL, which allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code...

10CVSS9.1AI score0.04483EPSS
Exploits1References8
Rows per page
Query Builder