Vulnerabilities > Mozilla > Firefox > 44.0.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-06-11 | CVE-2018-5132 | Information Exposure vulnerability in multiple products The Find API for WebExtensions can search some privileged pages, such as "about:debugging", if these pages are open in a tab. | 4.3 |
2018-06-11 | CVE-2018-5131 | Information Exposure vulnerability in multiple products Under certain circumstances the "fetch()" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. | 4.3 |
2018-06-11 | CVE-2018-5130 | Improper Input Validation vulnerability in multiple products When packets with a mismatched RTP payload type are sent in WebRTC connections, in some circumstances a potentially exploitable crash is triggered. | 6.8 |
2018-06-11 | CVE-2018-5129 | Out-of-bounds Write vulnerability in multiple products A lack of parameter validation on IPC messages results in a potential out-of-bounds write through malformed IPC messages. | 5.0 |
2018-06-11 | CVE-2018-5128 | Use After Free vulnerability in multiple products A use-after-free vulnerability can occur when manipulating elements, events, and selection ranges during editor operations. | 7.5 |
2018-06-11 | CVE-2018-5127 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow can occur when manipulating the SVG "animatedPathSegList" through script. | 6.8 |
2018-06-11 | CVE-2018-5126 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Memory safety bugs were reported in Firefox 58. | 7.5 |
2018-06-11 | CVE-2018-5125 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Memory safety bugs were reported in Firefox 58 and Firefox ESR 52.6. | 6.8 |
2018-06-11 | CVE-2018-5122 | Integer Overflow or Wraparound vulnerability in multiple products A potential integer overflow in the "DoCrypt" function of WebCrypto was identified. | 7.5 |
2018-06-11 | CVE-2018-5121 | Improper Input Validation vulnerability in Mozilla Firefox Low descenders on some Tibetan characters in several fonts on OS X are clipped when rendered in the addressbar. | 5.0 |