Lucene search
K

26 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Firefox

Due to unexpected data type conversions, a use-after-free might have occurred when interacting with the font cache. We assume that with sufficient effort, this vulnerability could have been exploited to execute arbitrary code. This vulnerability affects Firefox versions earlier than 88...

8.8CVSS7.6AI score0.00816EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2026/05/07 12:0 a.m.26 views

KLA91025 Multiple vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in the DOM: Networking component can be exploited...

8.1CVSS6.6AI score0.00323EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/18 2:21 p.m.3 views

CVE-2025-14860 Use-after-free in the Disability Access APIs component

Use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 146.0.1...

7.3AI score0.00265EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/09/30 12:49 p.m.4 views

CVE-2025-11152

Sandbox escape due to integer overflow in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 143.0.3...

8.6CVSS7.9AI score0.00252EPSS
Exploits0
NVD
NVD
added 2025/08/19 9:15 p.m.5 views

CVE-2025-9183

Spoofing issue in the Address Bar component. This vulnerability was fixed in Firefox 142 and Firefox ESR 140.2...

6.5CVSS0.00231EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/19 8:52 p.m.5 views

CVE-2025-8041 Incorrect URL truncation in Firefox for Android

In the address bar, Firefox for Android truncated the display of URLs from the end instead of prioritizing the origin. This vulnerability was fixed in Firefox 141...

5.8AI score0.00255EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-29551

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could ha...

8.8CVSS8.6AI score0.00521EPSS
Exploits0References2
OSV
OSV
added 2025/06/24 1:15 p.m.6 views

UBUNTU-CVE-2025-6426

The executable file warning did not warn users before opening files with the terminal extension. This bug only affects Firefox for macOS. Other versions of Firefox are unaffected.. This vulnerability was fixed in Firefox 140, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12...

8.8CVSS7.3AI score0.00173EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.8 views

Astra Linux – Vulnerability in Firefox, Thunderbird

A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects Firefox 131, Firefox ESR 128.3, Firefox ESR 115.16, Thunderbird 128.3, and Thunderbird 131...

9.8CVSS7.1AI score0.00531EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/08/07 2:55 a.m.3 views

SUSE CVE-2024-7524

Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. On a site protected by Content Security Policy in "strict-dynamic" mode, an attacker able to inject an HTML element could have used a DOM Clobbering attack on some of the shims and...

8.8CVSS6.1AI score0.00461EPSS
Exploits0References6
OSV
OSV
added 2024/07/09 3:15 p.m.9 views

CVE-2024-6605

Firefox Android allowed immediate interaction with permission prompts. This could be used for tapjacking. This vulnerability affects Firefox 128...

8.8CVSS5.8AI score0.00355EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/12/19 12:0 a.m.2 views

Mozilla Firefox Security Vulnerability

Mozilla Firefox is an open source web browser from the Mozilla Foundation. A security vulnerability exists in Mozilla Firefox, which originates from a clickjacking vulnerability. An attacker can exploit the vulnerability to trick users into clicking an authorization button. Affected products and...

6.1CVSS6.5AI score0.00683EPSS
Exploits0References13
CNNVD
CNNVD
added 2023/11/21 12:0 a.m.2 views

Mozilla Firefox Security Vulnerability

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox versions prior to 120, Firefox ESR versions prior to 115.5, and Thunderbird versions prior to 115.5.0, which stems from a vulnerability that can force...

6.5CVSS8.7AI score0.00827EPSS
Exploits0References15
OSV
OSV
added 2023/06/02 5:15 p.m.3 views

CVE-2023-28177

Memory safety bugs present in Firefox 110. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 111...

8.8CVSS7.5AI score0.00545EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:2 a.m.2 views

SUSE CVE-2009-3374

The XPCVariant::VariantDataToJS function in the XPCOM implementation in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 does not enforce intended restrictions on interaction between chrome privileged code and objects obtained from remote web sites, which allows remote attackers to...

7.5CVSS9.1AI score0.01981EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:47 a.m.4 views

SUSE CVE-2017-7770

A mechanism where when a new tab is loaded through JavaScript events, if fullscreen mode is then entered, the addressbar will not be rendered. This would allow a malicious site to displayed a spoofed addressbar, showing the location of an arbitrary website instead of the one loaded. Note: this...

5.9CVSS6.2AI score0.01147EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:45 a.m.4 views

SUSE CVE-2021-23988

Mozilla developers reported memory safety bugs present in Firefox 86. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 87...

8.8CVSS9.4AI score0.01081EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:28 a.m.1 views

SUSE CVE-2022-22762

Under certain circumstances, a JavaScript alert or prompt could have been shown while another website was displayed underneath it. This could have been abused to trick the user. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox ...

4.3CVSS8.4AI score0.0037EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/04 5:3 p.m.4 views

Mozilla: Javascript alert box could have been spoofed onto an arbitrary domain

Due to an unusual sequence of attacker-controlled events, a Javascript alert dialog with arbitrary although unstyled contents could be displayed over top an uncontrolled webpage of the attacker's choosing. This vulnerability affects Firefox 94, Thunderbird 91.3, and Firefox ESR 91.3...

4.3CVSS7.4AI score0.01622EPSS
Exploits0References4
CNVD
CNVD
added 2018/12/14 12:0 a.m.3 views

Mozilla Firefox and Firefox ESR Memory Misreference Vulnerability (CNVD-2018-25867)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A memory misreference vulnerability exists in Mozilla Firefox versions prior to 64 and Firefox ES...

9.8CVSS9AI score0.09646EPSS
Exploits0References1
Rows per page
Query Builder