Mozilla Firefox Code Execution Vulnerability (CNVD-2026-11797)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a code execution vulnerability due to a use-after-release in the Layout: Scroll and Overflow component. An attacker can exploit this vulnerability to execute arbitrary code...

The vulnerability of Mozilla Firefox and Firefox ESR browsers relates to improper encoding or filtering of output data. This allows attackers to bypass existing security restrictions and redirect users to another website.

The vulnerability of Mozilla Firefox and Firefox ESR browsers is related to improper encoding or evasion of output data during the processing of the embed tag. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and redirect users to another website...

The vulnerability of the Mozilla Firefox browser, related to errors in information representation by the user interface, allows a hacker to replace the address bar.

The vulnerability of the Mozilla Firefox browser is related to errors in information representation by the user interface. Exploiting this vulnerability allows a malicious actor to substitute the address bar with a specially created link...

The vulnerability of Firefox browsers, including Firefox ESR, arises from the absence of a confirmation dialog box when opening Usenet links such as “news:“ and “snews:“. This allows a malicious user to download any application and execute any code.

The vulnerability of Firefox and Firefox ESR lies in the absence of a confirmation dialog box when opening “news:“ and “snews:“ protocols related to Usenet. Exploiting this vulnerability allows an attacker to download arbitrary applications and execute arbitrary code...

The vulnerability of Chromium, Firefox, and Safari browsers lies in errors during the processing of input data, allowing attackers to execute arbitrary code.

The vulnerability of the Chromium, Firefox, and Safari browsers’ software is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, provided that the user clicks on a specially crafted link...

The vulnerability in the full-screen mode of the Mozilla Firefox browser, which allows a hacker to execute a spoofing attack

The vulnerability of the full-screen mode of the Mozilla Firefox browser is related to insufficient warnings about dangerous actions. Exploiting this vulnerability allows a remote attacker to carry out spoofing attacks...

The vulnerability of Mozilla Firefox and Firefox ESR browsers relates to the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Mozilla Firefox and Firefox ESR browsers is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of Firefox browser, related to the improper assignment of access rights for critical resources, allows attackers to gain unauthorized access to information.

The vulnerability of Firefox browsers is related to the improper assignment of access rights for critical resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to information...

The vulnerabilities of browsers Firefox, Firefox ESR, and the email client Thunderbird involve memory usage after it is freed. This allows attackers to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerabilities of Firefox browsers, Firefox ESR, and the Thunderbird email client are related to the use of a certain data structure after it is freed upon deletion of the list manager currently in use. Exploiting these vulnerabilities allows an attacker who operates remotely to gain access ...

The vulnerability in web browsers Firefox, Firefox ESR, and the email client Thunderbird, related to memory usage after deallocation, allows an attacker to execute arbitrary code or cause a service failure.

The vulnerability in web browsers Firefox, Firefox ESR, and the email client Thunderbird relates to the use of memory after deallocation. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure...

The vulnerability of the Firefox browser, which allows a malicious attacker to execute arbitrary code or trigger a service denial.

The vulnerability of the asm.js component in the Firefox browser lies in its improper handling of safe exception handling during JIT-compilation and its access to dynamic memory. Exploiting this vulnerability allows a malicious actor to gain access to data in separate memory segments, and then...

The vulnerability in the Firefox ESR software allows a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in the browser engine of Mozilla Firefox ESR allows malicious actors operating remotely to cause service failures memory errors and unexpected application termination or execute arbitrary code...

Mozilla Firefox and Firefox ESR Graphite 2 Denial of Service Vulnerability (CNVD-2016-01645)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox.Graphite is a suite of enterprise-class open source system monitoring tools data plotting written ...

The vulnerabilities in browsers Firefox, Firefox ESR, and the operating system Firefox OS allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the StyleAnimationValue class StyleAnimationValue::operator in Firefox browsers, Firefox ESR, and the Firefox OS operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrit...