VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Mozilla
>
Thunderbird
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-12-19
CVE-2023-6859
Use After Free vulnerability in multiple products
A use-after-free condition affected TLS socket creation when under memory pressure.
network
low complexity
mozilla
debian
CWE-416
8.8
8.8
2023-12-19
CVE-2023-6861
Out-of-bounds Write vulnerability in multiple products
The `nsWindow::PickerOpen(void)` method was susceptible to a heap buffer overflow when running in headless mode.
network
low complexity
mozilla
debian
CWE-787
8.8
8.8
2023-12-19
CVE-2023-6862
Use After Free vulnerability in multiple products
A use-after-free was identified in the `nsDNSService::Init`.
network
low complexity
mozilla
debian
CWE-416
8.8
8.8
2023-12-19
CVE-2023-6863
The `ShutdownObserver()` was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor.
network
low complexity
mozilla
debian
8.8
8.8
2023-12-19
CVE-2023-6864
Out-of-bounds Write vulnerability in multiple products
Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5.
network
low complexity
mozilla
debian
CWE-787
8.8
8.8
2023-11-21
CVE-2023-6207
Use After Free vulnerability in multiple products
Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5.
network
low complexity
mozilla
debian
CWE-416
8.8
8.8
2023-11-21
CVE-2023-6208
When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage not unlike the clipboard. *This bug only affects Firefox on X11.
network
low complexity
mozilla
debian
8.8
8.8
2023-11-21
CVE-2023-6212
Out-of-bounds Write vulnerability in multiple products
Memory safety bugs present in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4.
network
low complexity
mozilla
debian
CWE-787
8.8
8.8
2023-10-25
CVE-2023-5724
Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash.
network
low complexity
mozilla
debian
7.5
7.5
2023-10-25
CVE-2023-5728
During garbage collection extra operations were performed on a object that should not be.
network
low complexity
mozilla
debian
7.5
7.5
«
Previous
1
2
3
(current)
4
5
...
29
30
»
Next