Vulnerabilities > Mozilla > Firefox > 68.4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-03 | CVE-2024-8385 | Type Confusion vulnerability in Mozilla Firefox A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an exploitable type confusion vulnerability. | 9.8 |
| 2024-09-03 | CVE-2024-8386 | Open Redirect vulnerability in Mozilla Firefox If a site had been granted the permission to open popup windows, it could cause Select elements to appear on top of another site to perform a spoofing attack. | 6.1 |
| 2024-09-03 | CVE-2024-8388 | Unspecified vulnerability in Mozilla Firefox Multiple prompts and panels from both Firefox and the Android OS could be used to obscure the notification announcing the transition to fullscreen mode after the fix for CVE-2023-6870 in Firefox 121. | 5.3 |
| 2024-08-06 | CVE-2024-7518 | Unspecified vulnerability in Mozilla Firefox Select options could obscure the fullscreen notification dialog. | 6.5 |
| 2024-08-06 | CVE-2024-7519 | Out-of-bounds Write vulnerability in Mozilla Firefox Insufficient checks when processing graphics shared memory could have led to memory corruption. | 9.6 |
| 2024-08-06 | CVE-2024-7520 | Type Confusion vulnerability in Mozilla Firefox A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. | 8.8 |
| 2024-08-06 | CVE-2024-7521 | Improper Handling of Exceptional Conditions vulnerability in Mozilla Firefox Incomplete WebAssembly exception handing could have led to a use-after-free. | 8.8 |
| 2024-08-06 | CVE-2024-7522 | Out-of-bounds Read vulnerability in Mozilla Firefox Editor code failed to check an attribute value. | 8.8 |
| 2024-08-06 | CVE-2024-7524 | Cross-site Scripting vulnerability in Mozilla Firefox Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. | 6.1 |
| 2024-08-06 | CVE-2024-7525 | Incorrect Default Permissions vulnerability in Mozilla Firefox It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site. | 8.1 |