Filters

Mozilla Firefox ESR4 vulnerabilities

First published (updated )

Firefox normally asks for confirmation before asking the operating system to find an application to …

7.5
EPSS
0.05%
First published (updated )

Use After Free

EPSS
0.11%
First published (updated )

Internal browser event interfaces were exposed to web content when privileged EventHandler listener …

8.8
EPSS
0.08%
First published (updated )

A potentially exploitable type confusion could be triggered when looking up a property name on an ob…

EPSS
0.11%
First published (updated )

Mozilla Firefox9 vulnerabilities

First published (updated )

If a site had been granted the permission to open popup windows, it could cause Select elements to a…

EPSS
0.05%
First published (updated )

Firefox normally asks for confirmation before asking the operating system to find an application to …

7.5
EPSS
0.05%
First published (updated )

Use After Free

EPSS
0.11%
First published (updated )

Buffer Overflow

EPSS
0.07%
First published (updated )

Multiple prompts and panels from both Firefox and the Android OS could be used to obscure the notifi…

EPSS
0.05%
First published (updated )

A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an expl…

EPSS
0.07%
First published (updated )

Buffer Overflow

EPSS
0.09%
First published (updated )

Internal browser event interfaces were exposed to web content when privileged EventHandler listener …

8.8
EPSS
0.08%
First published (updated )

A potentially exploitable type confusion could be triggered when looking up a property name on an ob…

EPSS
0.11%
First published (updated )

Mozilla Firefox ESR7 vulnerabilities

First published (updated )

If a site had been granted the permission to open popup windows, it could cause Select elements to a…

EPSS
0.05%
First published (updated )

Firefox normally asks for confirmation before asking the operating system to find an application to …

7.5
EPSS
0.05%
First published (updated )

Use After Free

EPSS
0.11%
First published (updated )

Buffer Overflow

EPSS
0.07%
First published (updated )

A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an expl…

EPSS
0.07%
First published (updated )

Internal browser event interfaces were exposed to web content when privileged EventHandler listener …

8.8
EPSS
0.08%
First published (updated )

A potentially exploitable type confusion could be triggered when looking up a property name on an ob…

EPSS
0.11%
First published (updated )

Mozilla Focus1 vulnerability

First published (updated )

Websites could utilize Javascript links to spoof URL addresses in the Focus navigation bar

EPSS
0.04%
First published (updated )

Mozilla Thunderbird8 vulnerabilities

First published (updated )

If a site had been granted the permission to open popup windows, it could cause Select elements to a…

EPSS
0.05%
First published (updated )

Firefox normally asks for confirmation before asking the operating system to find an application to …

7.5
EPSS
0.05%
First published (updated )

Use After Free

EPSS
0.11%
First published (updated )

Buffer Overflow

EPSS
0.07%
First published (updated )

A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an expl…

EPSS
0.07%
First published (updated )

Internal browser event interfaces were exposed to web content when privileged EventHandler listener …

8.8
EPSS
0.08%
First published (updated )

A potentially exploitable type confusion could be triggered when looking up a property name on an ob…

EPSS
0.11%
First published (updated )

Use After Free

EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Mozilla Thunderbird4 vulnerabilities

First published (updated )

Firefox normally asks for confirmation before asking the operating system to find an application to …

7.5
EPSS
0.05%
First published (updated )

Use After Free

EPSS
0.11%
First published (updated )

Internal browser event interfaces were exposed to web content when privileged EventHandler listener …

8.8
EPSS
0.08%
First published (updated )

A potentially exploitable type confusion could be triggered when looking up a property name on an ob…

EPSS
0.11%
First published (updated )

Mozilla Firefox ESR12 vulnerabilities

First published (updated )

Use After Free

EPSS
0.07%
First published (updated )

The date picker could partially obscure security prompts. This could be used by a malicious site to …

8.1
EPSS
0.06%
First published (updated )

Use After Free

8.8
EPSS
0.08%
First published (updated )

ANGLE failed to initialize parameters which led to reading from uninitialized memory. This could be …

7.5
EPSS
0.07%
First published (updated )

Editor code failed to check an attribute value. This could have led to an out-of-bounds read.

EPSS
0.08%
First published (updated )

Select options could obscure the fullscreen notification dialog. This could be used by a malicious s…

EPSS
0.05%
First published (updated )

XSS

EPSS
0.05%
First published (updated )

It was possible for a web extension with minimal permissions to create a StreamFilter which could be…

EPSS
0.07%
First published (updated )

A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code ex…

8.8
EPSS
0.07%
First published (updated )

Calling PK11_Encrypt() in NSS using CKM_CHACHA20 and the same buffer for input and output can result…

EPSS
0.06%
First published (updated )

Use After Free

EPSS
0.08%
First published (updated )

Insufficient checks when processing graphics shared memory could have led to memory corruption. This…

EPSS
0.08%
First published (updated )

Mozilla Firefox14 vulnerabilities

First published (updated )

Use After Free

EPSS
0.07%
First published (updated )

Use After Free

EPSS
0.09%
First published (updated )

A select option could partially obscure security prompts. This could be used by a malicious site to …

8.1
EPSS
0.09%
First published (updated )

The date picker could partially obscure security prompts. This could be used by a malicious site to …

8.1
EPSS
0.06%
First published (updated )

Use After Free

8.8
EPSS
0.08%
First published (updated )

ANGLE failed to initialize parameters which led to reading from uninitialized memory. This could be …

7.5
EPSS
0.07%
First published (updated )

Editor code failed to check an attribute value. This could have led to an out-of-bounds read.

EPSS
0.08%
First published (updated )

Select options could obscure the fullscreen notification dialog. This could be used by a malicious s…

EPSS
0.05%
First published (updated )

XSS

EPSS
0.05%
First published (updated )

It was possible for a web extension with minimal permissions to create a StreamFilter which could be…

EPSS
0.07%
First published (updated )

A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code ex…

8.8
EPSS
0.07%
First published (updated )

Calling PK11_Encrypt() in NSS using CKM_CHACHA20 and the same buffer for input and output can result…

EPSS
0.06%
First published (updated )

Use After Free

EPSS
0.08%
First published (updated )

Insufficient checks when processing graphics shared memory could have led to memory corruption. This…

EPSS
0.08%
First published (updated )

Mozilla Firefox ESR9 vulnerabilities

First published (updated )

The date picker could partially obscure security prompts. This could be used by a malicious site to …

8.1
EPSS
0.06%
First published (updated )

Use After Free

8.8
EPSS
0.08%
First published (updated )

ANGLE failed to initialize parameters which led to reading from uninitialized memory. This could be …

7.5
EPSS
0.07%
First published (updated )

Editor code failed to check an attribute value. This could have led to an out-of-bounds read.

EPSS
0.08%
First published (updated )

XSS

EPSS
0.05%
First published (updated )

It was possible for a web extension with minimal permissions to create a StreamFilter which could be…

EPSS
0.07%
First published (updated )

Calling PK11_Encrypt() in NSS using CKM_CHACHA20 and the same buffer for input and output can result…

EPSS
0.06%
First published (updated )

Use After Free

EPSS
0.08%
First published (updated )

Insufficient checks when processing graphics shared memory could have led to memory corruption. This…

EPSS
0.08%
First published (updated )

Mozilla Thunderbird10 vulnerabilities

First published (updated )

Use After Free

EPSS
0.07%
First published (updated )

The date picker could partially obscure security prompts. This could be used by a malicious site to …

8.1
EPSS
0.06%
First published (updated )

Use After Free

8.8
EPSS
0.08%
First published (updated )

ANGLE failed to initialize parameters which led to reading from uninitialized memory. This could be …

7.5
EPSS
0.07%
First published (updated )

Editor code failed to check an attribute value. This could have led to an out-of-bounds read.

EPSS
0.08%
First published (updated )

Select options could obscure the fullscreen notification dialog. This could be used by a malicious s…

EPSS
0.05%
First published (updated )

It was possible for a web extension with minimal permissions to create a StreamFilter which could be…

EPSS
0.07%
First published (updated )

A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code ex…

8.8
EPSS
0.07%
First published (updated )

Use After Free

EPSS
0.08%
First published (updated )

Insufficient checks when processing graphics shared memory could have led to memory corruption. This…

EPSS
0.08%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Mozilla Thunderbird7 vulnerabilities

First published (updated )

The date picker could partially obscure security prompts. This could be used by a malicious site to …

8.1
EPSS
0.06%
First published (updated )

Use After Free

8.8
EPSS
0.08%
First published (updated )

ANGLE failed to initialize parameters which led to reading from uninitialized memory. This could be …

7.5
EPSS
0.07%
First published (updated )

Editor code failed to check an attribute value. This could have led to an out-of-bounds read.

EPSS
0.08%
First published (updated )

It was possible for a web extension with minimal permissions to create a StreamFilter which could be…

EPSS
0.07%
First published (updated )

Use After Free

EPSS
0.08%
First published (updated )

Insufficient checks when processing graphics shared memory could have led to memory corruption. This…

EPSS
0.08%
First published (updated )

Mozilla Firefox3 vulnerabilities

First published (updated )

XSS

First published (updated )

XSS

First published (updated )

XSS

First published (updated )

Mozilla Thunderbird2 vulnerabilities

First published (updated )

Race Condition

EPSS
0.04%
First published (updated )

A mismatch between allocator and deallocator could have lead to memory corruption.

EPSS
0.04%
First published (updated )

Mozilla Thunderbird8 vulnerabilities

First published (updated )

Memory safety bugs present in Firefox 127 and Thunderbird 127. Some of these bugs showed evidence of…

EPSS
0.04%
First published (updated )

Race Condition

EPSS
0.04%
First published (updated )

Form validation popups could capture escape key presses. Therefore, spamming form validation message…

EPSS
0.05%
First published (updated )

Clipboard code failed to check the index on an array access. This could have lead to an out-of-bound…

EPSS
0.04%
First published (updated )

A mismatch between allocator and deallocator could have lead to memory corruption.

EPSS
0.04%
First published (updated )

A nested iframe, triggering a cross-site navigation, could send SameSite=Strict or Lax cookies.

EPSS
0.04%
First published (updated )

It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay custo…

8.8
EPSS
0.04%
First published (updated )

The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorr…

EPSS
0.04%
First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203