High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-10-18	CVE-2018-12361	Integer Overflow or Wraparound vulnerability in multiple products An integer overflow can occur in the SwizzleData code while calculating buffer sizes. network low complexity mozilla debian canonical CWE-190	8.8
2018-10-18	CVE-2018-12360	Use After Free vulnerability in multiple products A use-after-free vulnerability can occur when deleting an input element during a mutation event handler triggered by focusing that element. network low complexity redhat debian canonical mozilla CWE-416	8.8
2018-10-18	CVE-2018-12359	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow can occur when rendering canvas content while adjusting the height and width of the canvas element dynamically, causing data to be written outside of the currently computed boundaries. network low complexity redhat debian canonical mozilla CWE-119	8.8
2018-06-11	CVE-2018-5184	Inadequate Encryption Strength vulnerability in multiple products Using remote content in encrypted messages can lead to the disclosure of plaintext. network low complexity debian mozilla canonical redhat CWE-326	7.5
2018-06-11	CVE-2018-5178	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. network high complexity debian mozilla canonical redhat CWE-119	8.1
2018-06-11	CVE-2018-5174	Unspecified vulnerability in Mozilla products In the Windows 10 April 2018 Update, Windows Defender SmartScreen honors the "SEE_MASK_FLAG_NO_UI" flag associated with downloaded files and will not show any UI. network low complexity mozilla	7.5
2018-06-11	CVE-2018-5162	Missing Encryption of Sensitive Data vulnerability in multiple products Plaintext of decrypted emails can leak through the src attribute of remote images, or links. network low complexity redhat debian canonical mozilla CWE-311	7.5
2018-06-11	CVE-2018-5146	Out-of-bounds Write vulnerability in multiple products An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. network low complexity redhat debian canonical mozilla CWE-787	8.8
2018-06-11	CVE-2018-5144	Integer Overflow or Wraparound vulnerability in multiple products An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. network low complexity redhat debian canonical mozilla CWE-190	7.3
2018-06-11	CVE-2018-5129	Out-of-bounds Write vulnerability in multiple products A lack of parameter validation on IPC messages results in a potential out-of-bounds write through malformed IPC messages. network low complexity debian mozilla redhat canonical CWE-787	8.6