Vulnerabilities > Mozilla > Firefox > 2.0.0.9

DATE CVE VULNERABILITY TITLE RISK
2019-04-26 CVE-2019-9788 Out-of-bounds Write vulnerability in multiple products
Mozilla developers and community members reported memory safety bugs present in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5.
network
low complexity
mozilla redhat CWE-787
7.5
2019-04-26 CVE-2018-5124 Cross-site Scripting vulnerability in Mozilla Firefox
Unsanitized output in the browser UI leaves HTML tags in place and can result in arbitrary code execution in Firefox before version 58.0.1.
network
mozilla CWE-79
4.3
2019-04-26 CVE-2018-18510 Unspecified vulnerability in Mozilla Firefox
The about:crashcontent and about:crashparent pages can be triggered by web content.
network
mozilla
4.3
2019-04-26 CVE-2018-5179 Missing Release of Resource after Effective Lifetime vulnerability in Mozilla Firefox
A service worker can send the activate event on itself periodically which allows it to run perpetually, allowing it to monitor activity by users.
network
low complexity
mozilla CWE-772
5.0
2019-04-15 CVE-2017-7777 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphite2::GlyphCache::Loader::read_glyph function.
network
mozilla sil CWE-119
6.8
2019-04-15 CVE-2017-7776 Out-of-bounds Read vulnerability in multiple products
Heap-based Buffer Overflow read in Graphite2 library in Firefox before 54 in graphite2::Silf::getClassGlyph.
network
mozilla sil CWE-125
5.8
2019-04-15 CVE-2017-7774 Out-of-bounds Read vulnerability in multiple products
Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphite2::Silf::readGraphite function.
network
low complexity
mozilla sil CWE-125
6.4
2019-04-15 CVE-2017-7773 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Heap-based Buffer Overflow write in Graphite2 library in Firefox before 54 in lz4::decompress src/Decompressor.
network
mozilla sil CWE-119
6.8
2019-04-15 CVE-2017-7771 Out-of-bounds Read vulnerability in multiple products
Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphite2::Pass::readPass function.
network
mozilla sil CWE-125
5.8
2019-04-12 CVE-2017-7772 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 in lz4::decompress function.
network
mozilla sil CWE-119
6.8