Vulnerabilities > Mozilla > Firefox > 3.0.7

DATE CVE VULNERABILITY TITLE RISK
2024-08-06 CVE-2024-7522 Out-of-bounds Read vulnerability in Mozilla Firefox
Editor code failed to check an attribute value.
network
low complexity
mozilla CWE-125
8.8
2024-08-06 CVE-2024-7524 Cross-site Scripting vulnerability in Mozilla Firefox
Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection.
network
low complexity
mozilla CWE-79
6.1
2024-08-06 CVE-2024-7525 Incorrect Default Permissions vulnerability in Mozilla Firefox
It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site.
network
low complexity
mozilla CWE-276
8.1
2024-08-06 CVE-2024-7526 Use of Uninitialized Resource vulnerability in Mozilla Firefox
ANGLE failed to initialize parameters which lead to reading from uninitialized memory.
network
low complexity
mozilla CWE-908
6.5
2024-08-06 CVE-2024-7527 Use After Free vulnerability in Mozilla Firefox
Unexpected marking work at the start of sweeping could have led to a use-after-free.
network
low complexity
mozilla CWE-416
8.8
2024-08-06 CVE-2024-7528 Use After Free vulnerability in Mozilla Firefox
Incorrect garbage collection interaction in IndexedDB could have led to a use-after-free.
network
low complexity
mozilla CWE-416
8.8
2024-08-06 CVE-2024-7529 Unspecified vulnerability in Mozilla Firefox
The date picker could partially obscure security prompts.
network
low complexity
mozilla
6.5
2024-08-06 CVE-2024-7530 Use After Free vulnerability in Mozilla Firefox
Incorrect garbage collection interaction could have led to a use-after-free.
network
low complexity
mozilla CWE-416
8.8
2024-08-06 CVE-2024-7531 Unspecified vulnerability in Mozilla Firefox
Calling `PK11_Encrypt()` in NSS using CKM_CHACHA20 and the same buffer for input and output can result in plaintext on an Intel Sandy Bridge processor.
network
low complexity
mozilla
6.5
2024-07-09 CVE-2024-6608 Unspecified vulnerability in Mozilla Firefox
It was possible to move the cursor using pointerlock from an iframe.
network
low complexity
mozilla
4.3