6 matches found
UBUNTU-CVE-2024-28184
WeasyPrint helps web developers to create PDF documents. Since version 61.0, there's a vulnerability which allows attaching content of arbitrary files and URLs to a generated PDF document, even if urlfetcher is configured to prevent access to files and URLs. This vulnerability has been patched in...
CVE-2018-12375
Memory safety bugs present in Firefox 61. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 62...
Mozilla Firefox Security Restriction Bypass Vulnerability (CNVD-2018-14988)
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 61, which stems from the program's failure to detect protection for SameSite cookies. An attacker could use this vulnerabilit...
Unspecified Vulnerability in Mozilla Firefox and Firefox ESR (CNVD-2018-14987)
Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A security vulnerability exists in Mozilla Firefox versions prior to 61, Firefox ESR versions pri...
Mozilla Firefox and Firefox ESR Memory Misreference Vulnerability (CNVD-2018-12395)
Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A memory misreference vulnerability exists in Mozilla Firefox version 61, Firefox ESR versions...
Mozilla Firefox Same-Origin Policy Bypass Vulnerability (CNVD-2018-14984)
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 61. A remote attacker could exploit this vulnerability by tricking users into visiting a specially crafted website to bypass...