Vulnerabilities > Mozilla > Firefox > 37.0.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-02-26 | CVE-2021-23956 | Unspecified vulnerability in Mozilla Firefox An ambiguous file picker design could have confused users who intended to select and upload a single file into uploading a whole directory. network mozilla | 4.3 |
2021-02-26 | CVE-2021-23955 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Mozilla Firefox The browser could have been confused into transferring a pointer lock state into another tab, which could have lead to clickjacking attacks. | 4.3 |
2021-02-26 | CVE-2021-23954 | Type Confusion vulnerability in Mozilla Firefox Using the new logical assignment operators in a JavaScript switch statement could have caused a type confusion, leading to a memory corruption and a potentially exploitable crash. | 6.8 |
2021-02-26 | CVE-2021-23953 | Unspecified vulnerability in Mozilla Firefox If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data. network mozilla | 4.3 |
2021-02-26 | CVE-2021-23975 | Missing Authorization vulnerability in Mozilla Firefox The developer page about:memory has a Measure function for exploring what object types the browser has allocated and their sizes. | 4.3 |
2021-02-26 | CVE-2021-23974 | Unspecified vulnerability in Mozilla Firefox The DOMParser API did not properly process '<noscript>' elements for escaping. network mozilla | 4.3 |
2021-02-26 | CVE-2021-23973 | Information Exposure Through an Error Message vulnerability in multiple products When trying to load a cross-origin resource in an audio/video context a decoding error may have resulted, and the content of that error may have revealed information about the resource. | 4.3 |
2021-02-26 | CVE-2021-23972 | Unspecified vulnerability in Mozilla Firefox One phishing tactic on the web is to provide a link with HTTP Auth. network mozilla | 6.8 |
2021-02-26 | CVE-2021-23971 | Unspecified vulnerability in Mozilla Firefox When processing a redirect with a conflicting Referrer-Policy, Firefox would have adopted the redirect's Referrer-Policy. network mozilla | 4.3 |
2021-02-26 | CVE-2021-23970 | Reachable Assertion vulnerability in Mozilla Firefox Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. | 4.3 |