Vulnerabilities > Mozilla > Firefox
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-06 | CVE-2024-43113 | Cross-site Scripting vulnerability in Mozilla Firefox The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129. | 6.1 |
| 2024-08-06 | CVE-2024-7518 | Unspecified vulnerability in Mozilla Firefox Select options could obscure the fullscreen notification dialog. | 6.5 |
| 2024-08-06 | CVE-2024-7519 | Out-of-bounds Write vulnerability in Mozilla Firefox Insufficient checks when processing graphics shared memory could have led to memory corruption. | 9.6 |
| 2024-08-06 | CVE-2024-7520 | Type Confusion vulnerability in Mozilla Firefox A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. | 8.8 |
| 2024-08-06 | CVE-2024-7521 | Improper Handling of Exceptional Conditions vulnerability in Mozilla Firefox Incomplete WebAssembly exception handing could have led to a use-after-free. | 8.8 |
| 2024-08-06 | CVE-2024-7522 | Out-of-bounds Read vulnerability in Mozilla Firefox Editor code failed to check an attribute value. | 8.8 |
| 2024-08-06 | CVE-2024-7523 | Unspecified vulnerability in Mozilla Firefox A select option could partially obscure security prompts. | 8.1 |
| 2024-08-06 | CVE-2024-7524 | Cross-site Scripting vulnerability in Mozilla Firefox Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. | 6.1 |
| 2024-08-06 | CVE-2024-7525 | Incorrect Default Permissions vulnerability in Mozilla Firefox It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site. | 8.1 |
| 2024-08-06 | CVE-2024-7526 | Use of Uninitialized Resource vulnerability in Mozilla Firefox ANGLE failed to initialize parameters which lead to reading from uninitialized memory. | 6.5 |