Vulnerabilities > Mozilla > Firefox > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-11 | CVE-2016-9897 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Memory corruption resulting in a potentially exploitable crash during WebGL functions using a vector constructor with a varying array within libGLES. | 7.5 |
| 2018-06-11 | CVE-2016-9896 | Use After Free vulnerability in Mozilla Firefox Use-after-free while manipulating the "navigator" object within WebVR. | 8.1 |
| 2018-06-11 | CVE-2016-9894 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox A buffer overflow in SkiaGl caused when a GrGLBuffer is truncated during allocation. | 7.5 |
| 2018-06-11 | CVE-2016-9079 | Use After Free vulnerability in multiple products A use-after-free vulnerability in SVG Animation has been discovered. | 7.5 |
| 2018-06-11 | CVE-2016-9078 | Open Redirect vulnerability in Mozilla Firefox 49.0/50.0 Redirection from an HTTP connection to a "data:" URL assigns the referring site's origin to the "data:" URL in some circumstances. | 8.8 |
| 2018-06-11 | CVE-2016-9077 | Race Condition vulnerability in Mozilla Firefox Canvas allows the use of the "feDisplacementMap" filter on images loaded cross-origin. | 7.0 |
| 2018-06-11 | CVE-2016-9073 | Permissions, Privileges, and Access Controls vulnerability in Mozilla Firefox WebExtensions can bypass security checks to load privileged URLs and potentially escape the WebExtension sandbox. | 7.5 |
| 2018-06-11 | CVE-2016-9072 | 7PK - Security Features vulnerability in Mozilla Firefox When a new Firefox profile is created on 64-bit Windows installations, the sandbox for 64-bit NPAPI plugins is not enabled by default. | 7.5 |
| 2018-06-11 | CVE-2016-9070 | Permissions, Privileges, and Access Controls vulnerability in Mozilla Firefox A maliciously crafted page loaded to the sidebar through a bookmark can reference a privileged chrome window and engage in limited JavaScript operations violating cross-origin protections. | 8.0 |
| 2018-06-11 | CVE-2016-9068 | Use After Free vulnerability in Mozilla Firefox A use-after-free during web animations when working with timelines resulting in a potentially exploitable crash. | 7.5 |