Vulnerabilities > Mozilla > Firefox > 84.0.2

DATE CVE VULNERABILITY TITLE RISK
2021-06-24 CVE-2021-29955 Injection vulnerability in Mozilla Firefox
A transient execution vulnerability, named Floating Point Value Injection (FPVI) allowed an attacker to leak arbitrary memory addresses and may have also enabled JIT type confusion attacks.
network
high complexity
mozilla CWE-74
5.3
5.3
2021-06-24 CVE-2021-29959 Incorrect Authorization vulnerability in Mozilla Firefox
When a user has already allowed a website to access microphone and camera, disabling camera sharing would not fully prevent the website from re-enabling it without an additional prompt.
network
low complexity
mozilla CWE-863
4.3
4.3
2021-06-24 CVE-2021-29960 Incorrect Resource Transfer Between Spheres vulnerability in Mozilla Firefox
Firefox used to cache the last filename used for printing a file.
network
low complexity
mozilla CWE-669
4.3
4.3
2021-06-24 CVE-2021-29961 Incorrect Authorization vulnerability in Mozilla Firefox
When styling and rendering an oversized `<select>` element, Firefox did not apply correct clipping which allowed an attacker to paint over the user interface.
network
low complexity
mozilla CWE-863
4.3
4.3
2021-06-24 CVE-2021-29964 Out-of-bounds Read vulnerability in Mozilla Firefox
A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would process incorrectly, leading to an out-of-bounds read.
local
low complexity
mozilla CWE-125
7.1
7.1
2021-06-24 CVE-2021-29966 Out-of-bounds Write vulnerability in Mozilla Firefox
Mozilla developers reported memory safety bugs present in Firefox 88.
network
low complexity
mozilla CWE-787
8.8
8.8
2021-06-24 CVE-2021-29967 Out-of-bounds Write vulnerability in Mozilla Firefox ESR
Mozilla developers reported memory safety bugs present in Firefox 88 and Firefox ESR 78.11.
network
low complexity
mozilla CWE-787
8.8
8.8
2021-06-24 CVE-2021-29968 Out-of-bounds Read vulnerability in Mozilla Firefox
When drawing text onto a canvas with WebRender disabled, an out of bounds read could occur.
network
low complexity
mozilla CWE-125
8.1
8.1
2021-06-15 CVE-2021-30547 Out-of-bounds Write vulnerability in multiple products
Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
network
low complexity
google debian fedoraproject mozilla CWE-787
8.8
8.8
2021-03-31 CVE-2021-23988 Out-of-bounds Write vulnerability in Mozilla Firefox
Mozilla developers reported memory safety bugs present in Firefox 86.
network
low complexity
mozilla CWE-787
8.8
8.8