Vulnerabilities > Mozilla > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-11 | CVE-2017-5449 | Improper Input Validation vulnerability in multiple products A possibly exploitable crash triggered during layout and manipulation of bidirectional unicode text in concert with CSS animations. | 7.5 |
| 2018-06-11 | CVE-2017-5448 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write in "ClearKeyDecryptor" while decrypting some Clearkey-encrypted media content. | 8.6 |
| 2018-06-11 | CVE-2017-5445 | Improper Validation of Array Index vulnerability in multiple products A vulnerability while parsing "application/http-index-format" format content where uninitialized values are used to create an array. | 7.5 |
| 2018-06-11 | CVE-2017-5444 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow vulnerability while parsing "application/http-index-format" format content when the header contains improperly formatted data. | 7.5 |
| 2018-06-11 | CVE-2017-5436 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write in the Graphite 2 library triggered with a maliciously crafted Graphite font. | 8.8 |
| 2018-06-11 | CVE-2017-5425 | Information Exposure vulnerability in Mozilla Firefox The Gecko Media Plugin sandbox allows access to local files that match specific regular expressions. | 7.5 |
| 2018-06-11 | CVE-2017-5422 | Improper Input Validation vulnerability in Mozilla Thunderbird If a malicious site uses the "view-source:" protocol in a series within a single hyperlink, it can trigger a non-exploitable browser crash when the hyperlink is selected. | 7.5 |
| 2018-06-11 | CVE-2017-5421 | Improper Input Validation vulnerability in Mozilla Thunderbird A malicious site could spoof the contents of the print preview window if popup windows are enabled, resulting in user confusion of what site is currently loaded. | 7.5 |
| 2018-06-11 | CVE-2017-5419 | Unspecified vulnerability in Mozilla Thunderbird If a malicious site repeatedly triggers a modal authentication prompt, eventually the browser UI will become non-responsive, requiring shutdown through the operating system. | 7.5 |
| 2018-06-11 | CVE-2017-5416 | NULL Pointer Dereference vulnerability in Mozilla Thunderbird In certain circumstances a networking event listener can be prematurely released. | 7.5 |