Vulnerabilities > Mozilla > Firefox > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-06 | CVE-2024-7519 | Out-of-bounds Write vulnerability in Mozilla Firefox Insufficient checks when processing graphics shared memory could have led to memory corruption. | 9.6 |
| 2024-06-11 | CVE-2024-5695 | Out-of-bounds Write vulnerability in Mozilla Firefox If an out-of-memory condition occurs at a specific point using allocations in the probabilistic heap checker, an assertion could have been triggered, and in rarer situations, memory corruption could have occurred. | 9.8 |
| 2024-04-16 | CVE-2024-3863 | Unspecified vulnerability in Mozilla Thunderbird The executable file warning was not presented when downloading .xrm-ms files. | 9.8 |
| 2023-11-21 | CVE-2023-49060 | Unspecified vulnerability in Mozilla Firefox An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute. | 9.8 |
| 2023-10-25 | CVE-2023-5731 | Out-of-bounds Write vulnerability in Mozilla Firefox Memory safety bugs present in Firefox 118. | 9.8 |
| 2023-10-25 | CVE-2023-5730 | Out-of-bounds Write vulnerability in multiple products Memory safety bugs present in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3. | 9.8 |
| 2023-09-27 | CVE-2023-5176 | Out-of-bounds Write vulnerability in multiple products Memory safety bugs present in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2. | 9.8 |
| 2023-09-27 | CVE-2023-5175 | Use After Free vulnerability in Mozilla Firefox During process shutdown, it was possible that an `ImageBitmap` was created that would later be used after being freed from a different codepath, leading to a potentially exploitable crash. | 9.8 |
| 2023-09-27 | CVE-2023-5174 | Use After Free vulnerability in Mozilla Firefox If Windows failed to duplicate a handle during process creation, the sandbox code may have inadvertently freed a pointer twice, resulting in a use-after-free and a potentially exploitable crash. *This bug only affects Firefox on Windows when run in non-standard configurations (such as using `runas`). | 9.8 |
| 2023-09-27 | CVE-2023-5172 | Use After Free vulnerability in Mozilla Firefox A hashtable in the Ion Engine could have been mutated while there was a live interior reference, leading to a potential use-after-free and exploitable crash. | 9.8 |