Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla firefox 31.0 vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2014-1565
The mozilla::dom::AudioEventTimeline function in the Web Audio API implementation in Mozilla Firefox prior to 32.0, Firefox ESR 31.x prior to 31.1, and Thunderbird 31.x prior to 31.1 does not properly create audio timelines, which allows remote malicious users to obtain sensitive...
Mozilla Firefox 30.0Mozilla FirefoxMozilla Firefox 31.0Mozilla Firefox Esr 31.0Mozilla Thunderbird 31.0
5
CVSSv2
CVE-2014-1585
The WebRTC video-sharing feature in dom/media/MediaManager.cpp in Mozilla Firefox prior to 33.0, Firefox ESR 31.x prior to 31.2, and Thunderbird 31.x prior to 31.2 does not properly recognize Stop Sharing actions for videos in IFRAME elements, which allows remote malicious users ...
Mozilla Thunderbird 31.1.0Mozilla Thunderbird 31.0Mozilla Firefox Esr 31.1.0Mozilla Firefox Esr 31.0Mozilla Firefox 30.0Mozilla Firefox 31.1.0Mozilla Firefox 31.0Mozilla Firefox
5
CVSSv2
CVE-2014-1586
content/base/src/nsDocument.cpp in Mozilla Firefox prior to 33.0, Firefox ESR 31.x prior to 31.2, and Thunderbird 31.x prior to 31.2 does not consider whether WebRTC video sharing is occurring, which allows remote malicious users to obtain sensitive information from the local cam...
Mozilla Firefox 30.0Mozilla Firefox 31.1.0Mozilla Firefox 31.0Mozilla FirefoxMozilla Thunderbird 31.0Mozilla Thunderbird 31.1.0Mozilla Firefox Esr 31.1.0Mozilla Firefox Esr 31.0
10
CVSSv2
CVE-2014-1553
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 32.0, Firefox ESR 31.x prior to 31.1, and Thunderbird 31.x prior to 31.1 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute ...
Opensuse Opensuse 12.3Opensuse Opensuse 13.1Opensuse Evergreen 11.4Mozilla Thunderbird 31.0Mozilla Firefox 31.0Mozilla Firefox 30.0Mozilla Firefox Esr 31.0Mozilla Firefox
4.3
CVSSv2
CVE-2014-1564
Mozilla Firefox prior to 32.0, Firefox ESR 31.x prior to 31.1, and Thunderbird 31.x prior to 31.1 do not properly initialize memory for GIF rendering, which allows remote malicious users to obtain sensitive information from process memory via crafted web script that interacts wit...
Opensuse Opensuse 12.3Opensuse Opensuse 13.1Opensuse Evergreen 11.4Mozilla Thunderbird 31.0Mozilla FirefoxMozilla Firefox 31.0Mozilla Firefox Esr 31.0Mozilla Firefox 30.0
10
CVSSv2
CVE-2014-1563
Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox prior to 32.0, Firefox ESR 31.x prior to 31.1, and Thunderbird 31.x prior to 31.1 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory co...
Opensuse Opensuse 13.1Opensuse Evergreen 11.4Opensuse Opensuse 12.3Oracle Solaris 11.3Mozilla Firefox 31.0Mozilla Firefox 30.0Mozilla Firefox Esr 31.0Mozilla FirefoxMozilla Thunderbird 31.0
10
CVSSv2
CVE-2014-1554
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 32.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 30.0Mozilla FirefoxMozilla Firefox 31.0
4.3
CVSSv2
CVE-2014-1582
The Public Key Pinning (PKP) implementation in Mozilla Firefox prior to 33.0 does not properly consider the connection-coalescing behavior of SPDY and HTTP/2 in the case of a shared IP address, which allows man-in-the-middle malicious users to bypass an intended pinning configura...
Mozilla Firefox 31.0Mozilla Firefox 30.0Mozilla FirefoxMozilla Firefox 31.1.0
7.5
CVSSv2
CVE-2014-1575
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 33.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to improper interaction between t...
Mozilla FirefoxMozilla Firefox 30.0Mozilla Firefox 31.1.0Mozilla Firefox 31.0
5
CVSSv2
CVE-2014-1580
Mozilla Firefox prior to 33.0 does not properly initialize memory for GIF images, which allows remote malicious users to obtain sensitive information from process memory via a crafted web page that triggers a sequence of rendering operations for truncated GIF data within a CANVAS...
Mozilla Firefox 31.0Mozilla Firefox 30.0Mozilla FirefoxMozilla Firefox 31.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook