EUVD-2009-3957

Malware in sbrugna...

EUVD-2011-2653

Malware in sbrugna...

EUVD-2016-3038

Malware in sbrugna...

EUVD-2022-45988

Malicious code in bioql PyPI...

CVE-2025-0239 Alt-Svc ALPN validation failure when redirected

When using Alt-Svc, ALPN did not properly validate certificates when the original server is redirecting to an insecure site. This vulnerability was fixed in Firefox 134, Firefox ESR 128.6, Thunderbird 134, and Thunderbird 128.6...

CVE-2025-0244

CVE-2025-0244 affects Firefox on Android prior to version 134. The issue arises when redirecting to an invalid protocol scheme, enabling an attacker to spoof the address bar. Other operating systems are unaffected. The connected sources confirm a Firefox-specific Android exposure without specifyi...

CVE-2024-0746

A Linux user opening the print preview dialog could have caused the browser to crash. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...

Mozilla Firefox < 120.0

The version of Firefox installed on the remote Windows host is prior to 120.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-49 advisory. - Memory safety bugs present in Firefox 119. Some of these bugs showed evidence of memory corruption and we presume that...

CVE-2017-7755

The Firefox installer on Windows can be made to load malicious DLL files stored in the same directory as the installer when it is run. This allows privileged execution if the installer is run with elevated privileges. Note: This attack only affects Windows operating systems. Other operating syste...

Firefox < 0.9.3 Null Character MIME Type Spoofing Arbitrary Code Execution

The installed version of Firefox is earlier than 0.9.3. Such versions may allow arbitrary code execution. The security vulnerability is due to the fact that Firefox stores cached HTML documents with a known file name, and to the fact that it's possible to force Firefox to open cached files as HTM...