Vulnerabilities > Mozilla > Firefox
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-03 | CVE-2021-38494 | Out-of-bounds Write vulnerability in Mozilla Firefox Mozilla developers reported memory safety bugs present in Firefox 91. | 8.8 |
| 2021-11-03 | CVE-2021-38496 | Use After Free vulnerability in multiple products During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. | 8.8 |
| 2021-11-03 | CVE-2021-38497 | Origin Validation Error vulnerability in Mozilla Firefox Through use of reportValidity() and window.open(), a plain-text validation message could have been overlaid on another origin, leading to possible user confusion and spoofing attacks. | 6.5 |
| 2021-11-03 | CVE-2021-38498 | Use After Free vulnerability in Mozilla Firefox During process shutdown, a document could have caused a use-after-free of a languages service object, leading to memory corruption and a potentially exploitable crash. | 7.5 |
| 2021-11-03 | CVE-2021-38499 | Out-of-bounds Write vulnerability in Mozilla Firefox Mozilla developers reported memory safety bugs present in Firefox 92. | 8.8 |
| 2021-11-03 | CVE-2021-38500 | Mozilla developers reported memory safety bugs present in Firefox 92 and Firefox ESR 91.1. | 8.8 |
| 2021-11-03 | CVE-2021-38501 | Unspecified vulnerability in Mozilla Firefox Mozilla developers reported memory safety bugs present in Firefox 92 and Firefox ESR 91.1. | 8.8 |
| 2021-08-17 | CVE-2021-29980 | Missing Initialization of Resource vulnerability in Mozilla Thunderbird Uninitialized memory in a canvas object could have caused an incorrect free() leading to memory corruption and a potentially exploitable crash. | 8.8 |
| 2021-08-17 | CVE-2021-29981 | Unspecified vulnerability in Mozilla Firefox An issue present in lowering/register allocation could have led to obscure but deterministic register confusion failures in JITted code that would lead to a potentially exploitable crash. | 8.8 |
| 2021-08-17 | CVE-2021-29982 | Missing Release of Resource after Effective Lifetime vulnerability in Mozilla Firefox Due to incorrect JIT optimization, we incorrectly interpreted data from the wrong type of object, resulting in the potential leak of a single bit of memory. | 6.5 |