Vulnerabilities > Mozilla > Firefox > 3.5.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-08-01 | CVE-2023-4055 | When the number of cookies per domain was exceeded in `document.cookie`, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. | 7.5 |
2023-08-01 | CVE-2023-4056 | Out-of-bounds Write vulnerability in multiple products Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ESR 102.13, Thunderbird 115.0, and Thunderbird 102.13. | 9.8 |
2023-08-01 | CVE-2023-4057 | Out-of-bounds Write vulnerability in Mozilla Firefox Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and Thunderbird 115.0. | 9.8 |
2023-08-01 | CVE-2023-4058 | Out-of-bounds Write vulnerability in Mozilla Firefox Memory safety bugs present in Firefox 115. | 9.8 |
2023-08-01 | CVE-2023-4045 | Origin Validation Error vulnerability in multiple products Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. | 5.3 |
2023-08-01 | CVE-2023-4046 | In some circumstances, a stale value could have been used for a global variable in WASM JIT analysis. | 5.3 |
2023-08-01 | CVE-2023-4047 | A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions. | 8.8 |
2023-08-01 | CVE-2023-4048 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low memory situations. | 7.5 |
2023-08-01 | CVE-2023-4049 | Race Condition vulnerability in multiple products Race conditions in reference counting code were found through code inspection. | 5.9 |
2023-08-01 | CVE-2023-4050 | Out-of-bounds Write vulnerability in multiple products In some cases, an untrusted input stream was copied to a stack buffer without checking its size. | 7.5 |