Vulnerabilities > Mozilla > Firefox ESR
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-09-03 | CVE-2024-8387 | Out-of-bounds Write vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. | 9.8 |
2024-08-06 | CVE-2024-7518 | Unspecified vulnerability in Mozilla Firefox Select options could obscure the fullscreen notification dialog. | 6.5 |
2024-08-06 | CVE-2024-7519 | Out-of-bounds Write vulnerability in Mozilla Firefox Insufficient checks when processing graphics shared memory could have led to memory corruption. | 9.6 |
2024-08-06 | CVE-2024-7520 | Type Confusion vulnerability in Mozilla Firefox A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. | 8.8 |
2024-08-06 | CVE-2024-7521 | Improper Handling of Exceptional Conditions vulnerability in Mozilla Firefox Incomplete WebAssembly exception handing could have led to a use-after-free. | 8.8 |
2024-08-06 | CVE-2024-7522 | Out-of-bounds Read vulnerability in Mozilla Firefox Editor code failed to check an attribute value. | 8.8 |
2024-08-06 | CVE-2024-7524 | Cross-site Scripting vulnerability in Mozilla Firefox Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. | 6.1 |
2024-08-06 | CVE-2024-7525 | Incorrect Default Permissions vulnerability in Mozilla Firefox It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site. | 8.1 |
2024-08-06 | CVE-2024-7526 | Use of Uninitialized Resource vulnerability in Mozilla Firefox ANGLE failed to initialize parameters which lead to reading from uninitialized memory. | 6.5 |
2024-08-06 | CVE-2024-7527 | Use After Free vulnerability in Mozilla Firefox Unexpected marking work at the start of sweeping could have led to a use-after-free. | 8.8 |