Vulnerabilities > Mozilla > Firefox ESR
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-11 | CVE-2017-7760 | Channel and Path Errors vulnerability in Mozilla Firefox The Mozilla Windows updater modifies some files to be updated by reading the original file and applying changes to it. | 7.8 |
| 2018-06-11 | CVE-2017-7758 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use. | 9.1 |
| 2018-06-11 | CVE-2017-7757 | Use After Free vulnerability in multiple products A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. | 9.8 |
| 2018-06-11 | CVE-2017-7756 | Use After Free vulnerability in multiple products A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). | 9.8 |
| 2018-06-11 | CVE-2017-7755 | Untrusted Search Path vulnerability in Mozilla Firefox The Firefox installer on Windows can be made to load malicious DLL files stored in the same directory as the installer when it is run. | 7.8 |
| 2018-06-11 | CVE-2017-7754 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" object during WebGL operations. | 7.5 |
| 2018-06-11 | CVE-2017-7753 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. | 9.1 |
| 2018-06-11 | CVE-2017-7752 | Use After Free vulnerability in multiple products A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. | 8.8 |
| 2018-06-11 | CVE-2017-7751 | Use After Free vulnerability in multiple products A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. | 9.8 |
| 2018-06-11 | CVE-2017-7750 | Use After Free vulnerability in multiple products A use-after-free vulnerability during video control operations when a "<track>" element holds a reference to an older window if that window has been replaced in the DOM. | 9.8 |