Vulnerabilities > Mozilla
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-17 | CVE-2021-29985 | Use After Free vulnerability in Mozilla Thunderbird A use-after-free vulnerability in media channels could have led to memory corruption and a potentially exploitable crash. | 8.8 |
| 2021-08-17 | CVE-2021-29986 | Race Condition vulnerability in Mozilla Firefox A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. | 8.1 |
| 2021-08-17 | CVE-2021-29987 | Improper Restriction of Excessive Authentication Attempts vulnerability in Mozilla Firefox After requesting multiple permissions, and closing the first permission panel, subsequent permission panels will be displayed in a different position but still record a click in the default location, making it possible to trick a user into accepting a permission they did not want to. | 6.5 |
| 2021-08-17 | CVE-2021-29988 | Out-of-bounds Write vulnerability in Mozilla Thunderbird Firefox incorrectly treated an inline list-item element as a block element, resulting in an out of bounds read or memory corruption, and a potentially exploitable crash. | 8.8 |
| 2021-08-17 | CVE-2021-29989 | Out-of-bounds Write vulnerability in Mozilla Thunderbird Mozilla developers reported memory safety bugs present in Firefox 90 and Firefox ESR 78.12. | 8.8 |
| 2021-08-17 | CVE-2021-29990 | Out-of-bounds Write vulnerability in Mozilla Firefox Mozilla developers and community members reported memory safety bugs present in Firefox 90. | 8.8 |
| 2021-08-05 | CVE-2021-29969 | Files or Directories Accessible to External Parties vulnerability in Mozilla Thunderbird If Thunderbird was configured to use STARTTLS for an IMAP connection, and an attacker injected IMAP server responses prior to the completion of the STARTTLS handshake, then Thunderbird didn't ignore the injected data. | 5.9 |
| 2021-08-05 | CVE-2021-29970 | Use After Free vulnerability in Mozilla Firefox A malicious webpage could have triggered a use-after-free, memory corruption, and a potentially exploitable crash. | 8.8 |
| 2021-08-05 | CVE-2021-29971 | Improper Preservation of Permissions vulnerability in Mozilla Firefox If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission. | 9.8 |
| 2021-08-05 | CVE-2021-29972 | Use After Free vulnerability in Mozilla Firefox A use-after-free vulnerability was found via testing, and traced to an out-of-date Cairo library. | 8.8 |