Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.3 views

SUSE CVE-2014-1537

Use-after-free vulnerability in the mozilla::dom::workers::WorkerPrivateParent function in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via unspecified vectors...

10CVSS9.2AI score0.04801EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.7 views

SUSE CVE-2014-1556

Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allow remote attackers to execute arbitrary code via crafted WebGL content constructed with the Cesium JavaScript library...

9.3CVSS9.3AI score0.03758EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.4 views

SUSE CVE-2014-1561

Mozilla Firefox before 31.0 does not properly restrict use of drag-and-drop events to spoof customization events, which allows remote attackers to alter the placement of UI icons via crafted JavaScript code that is encountered during 1 page, 2 panel, or 3 toolbar customization...

5.8CVSS8.8AI score0.02138EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.3 views

SUSE CVE-2015-2717

Integer overflow in libstagefright in Mozilla Firefox before 38.0 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow and out-of-bounds read via an MP4 video file containing invalid metadata...

6.8CVSS9.3AI score0.03513EPSS
Exploits0References4
OSV
OSV
added 2015/07/05 12:0 a.m.3 views

UBUNTU-CVE-2015-2734

The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D 9 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, which has unspecified impact and attack vectors...

10CVSS6.1AI score0.02654EPSS
Exploits0References8
OSV
OSV
added 2015/01/14 12:0 a.m.3 views

UBUNTU-CVE-2014-8636

The XrayWrapper implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly interact with a DOM object that has a named getter, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via unspecified vectors...

7.5CVSS7.2AI score0.65657EPSS
Exploits4References4
OSV
OSV
added 2014/10/14 12:0 a.m.3 views

UBUNTU-CVE-2014-1574

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown...

7.5CVSS7.2AI score0.03897EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/07/22 6:20 p.m.7 views

Mozilla: Use-after-free with FireOnStateChange event (MFSA 2014-61)

Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allows remote attackers to execute arbitrary code via vectors that trigger a FireOnStateChange event...

9.3CVSS7.3AI score0.04907EPSS
Exploits0References5
Rows per page
Query Builder