Vulnerabilities > Mozilla > Firefox > 50

DATE CVE VULNERABILITY TITLE RISK
2018-06-11 CVE-2016-9897 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Memory corruption resulting in a potentially exploitable crash during WebGL functions using a vector constructor with a varying array within libGLES.
network
low complexity
redhat debian mozilla CWE-119
7.5
7.5
2018-06-11 CVE-2016-9896 Use After Free vulnerability in Mozilla Firefox
Use-after-free while manipulating the "navigator" object within WebVR.
network
high complexity
mozilla CWE-416
8.1
8.1
2018-06-11 CVE-2016-9895 7PK - Security Features vulnerability in multiple products
Event handlers on "marquee" elements were executed despite a strict Content Security Policy (CSP) that disallowed inline JavaScript.
network
low complexity
debian redhat mozilla CWE-254
6.1
6.1
2018-06-11 CVE-2016-9894 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox
A buffer overflow in SkiaGl caused when a GrGLBuffer is truncated during allocation.
network
low complexity
mozilla CWE-119
7.5
7.5
2018-06-11 CVE-2016-9893 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Memory safety bugs were reported in Thunderbird 45.5.
network
low complexity
debian redhat mozilla CWE-119
critical
 9.8
9.8
2018-06-11 CVE-2016-9080 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox
Memory safety bugs were reported in Firefox 50.0.2.
network
low complexity
mozilla CWE-119
critical
 9.8
9.8
2018-06-11 CVE-2016-9079 Use After Free vulnerability in multiple products
A use-after-free vulnerability in SVG Animation has been discovered.
network
low complexity
debian redhat mozilla torproject CWE-416
7.5
7.5
2018-06-11 CVE-2016-9077 Race Condition vulnerability in Mozilla Firefox
Canvas allows the use of the "feDisplacementMap" filter on images loaded cross-origin.
local
high complexity
mozilla CWE-362
7.0
7.0
2018-06-11 CVE-2016-9076 Improper Input Validation vulnerability in Mozilla Firefox
An issue where a "<select>" dropdown menu can be used to cover location bar content, resulting in potential spoofing attacks.
network
high complexity
mozilla CWE-20
5.9
5.9
2018-06-11 CVE-2016-9075 Permissions, Privileges, and Access Controls vulnerability in Mozilla Firefox
An issue where WebExtensions can use the mozAddonManager API to elevate privilege due to privileged pages being allowed in the permissions list.
network
low complexity
mozilla CWE-264
critical
 9.8
9.8