Vulnerabilities > Mozilla
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-22 | CVE-2024-0606 | Cross-site Scripting vulnerability in Mozilla Firefox Focus An attacker could execute unauthorized script on a legitimate site through UXSS using window.open() by opening a javascript URI leading to unauthorized actions within the user's loaded webpage. | 6.1 |
| 2023-12-19 | CVE-2023-50761 | The signature of a digitally signed S/MIME email message may optionally specify the signature creation date and time. | 4.3 |
| 2023-12-19 | CVE-2023-50762 | When processing a PGP/MIME payload that contains digitally signed text, the first paragraph of the text was never shown to the user. | 4.3 |
| 2023-12-19 | CVE-2023-6135 | Information Exposure Through Discrepancy vulnerability in Mozilla Firefox Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". | 4.3 |
| 2023-12-19 | CVE-2023-6856 | Out-of-bounds Write vulnerability in multiple products The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. | 8.8 |
| 2023-12-19 | CVE-2023-6857 | Race Condition vulnerability in multiple products When resolving a symlink, a race may occur where the buffer passed to `readlink` may actually be smaller than necessary. | 5.3 |
| 2023-12-19 | CVE-2023-6858 | Out-of-bounds Write vulnerability in multiple products Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM handling. | 8.8 |
| 2023-12-19 | CVE-2023-6859 | Use After Free vulnerability in multiple products A use-after-free condition affected TLS socket creation when under memory pressure. | 8.8 |
| 2023-12-19 | CVE-2023-6860 | The `VideoBridge` allowed any content process to use textures produced by remote decoders. | 6.5 |
| 2023-12-19 | CVE-2023-6861 | Out-of-bounds Write vulnerability in multiple products The `nsWindow::PickerOpen(void)` method was susceptible to a heap buffer overflow when running in headless mode. | 8.8 |