Vulnerabilities > Mozilla > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-02 CVE-2023-25740 Unspecified vulnerability in Mozilla Firefox
After downloading a Windows <code>.scf</code> script from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system.
network
low complexity
mozilla
8.8
8.8
2023-06-02 CVE-2023-25743 Authentication Bypass by Spoofing vulnerability in Mozilla Firefox Focus
A lack of in app notification for entering fullscreen mode could have lead to a malicious website spoofing browser chrome.<br>*This bug only affects Firefox Focus.
network
low complexity
mozilla CWE-290
7.5
7.5
2023-06-02 CVE-2023-25744 Out-of-bounds Write vulnerability in Mozilla Firefox ESR
Mmemory safety bugs present in Firefox 109 and Firefox ESR 102.7.
network
low complexity
mozilla CWE-787
8.8
8.8
2023-06-02 CVE-2023-25745 Out-of-bounds Write vulnerability in Mozilla Firefox
Memory safety bugs present in Firefox 109.
network
low complexity
mozilla CWE-787
8.8
8.8
2023-06-02 CVE-2023-25746 Out-of-bounds Write vulnerability in Mozilla Firefox ESR
Memory safety bugs present in Firefox ESR 102.7.
network
low complexity
mozilla CWE-787
8.8
8.8
2023-06-02 CVE-2023-28161 Improper Preservation of Permissions vulnerability in Mozilla Firefox
If temporary "one-time" permissions, such as the ability to use the Camera, were granted to a document loaded using a file: URL, that permission persisted in that tab for all other documents loaded from a file: URL.
network
low complexity
mozilla CWE-281
8.8
8.8
2023-06-02 CVE-2023-28162 Incorrect Type Conversion or Cast vulnerability in Mozilla Firefox
While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic type.
network
low complexity
mozilla CWE-704
8.8
8.8
2023-06-02 CVE-2023-28176 Out-of-bounds Write vulnerability in Mozilla Firefox
Memory safety bugs present in Firefox 110 and Firefox ESR 102.8.
network
low complexity
mozilla CWE-787
8.8
8.8
2023-06-02 CVE-2023-28177 Out-of-bounds Write vulnerability in Mozilla Firefox
Memory safety bugs present in Firefox 110.
network
low complexity
mozilla CWE-787
8.8
8.8
2023-06-02 CVE-2023-29536 Use After Free vulnerability in Mozilla products
An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash.
network
low complexity
mozilla CWE-416
8.8
8.8