Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 0.4 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2020-16012
Side-channel information leakage in graphics in Google Chrome before 87.0.4280.66 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Mozilla Firefox
Google Chrome
1 Github repository
6.5
CVSSv3
CVE-2020-16042
Uninitialized Use in V8 in Google Chrome before 87.0.4280.88 allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted HTML page.
Google Chrome
8.8
CVSSv3
CVE-2020-15969
Use after free in WebRTC in Google Chrome before 86.0.4240.75 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Opensuse Backports Sle 15.0
Apple Ipados
Apple Safari
Apple Watchos
Apple Macos
Apple Tvos
Apple Iphone Os
6.5
CVSSv3
CVE-2020-15999
Heap buffer overflow in Freetype in Google Chrome before 86.0.4240.111 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Freetype Freetype
Debian Debian Linux 10.0
Fedoraproject Fedora 31
Opensuse Backports Sle 15.0
7 Github repositories
3 Articles
6.5
CVSSv3
CVE-2020-6514
Inappropriate implementation in WebRTC in Google Chrome before 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.
Google Chrome
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 20.04
Apple Tvos
Apple Iphone Os
Apple Safari
Apple Watchos
Apple Ipados
1 Github repository
NA
CVE-2015-0821
Mozilla Firefox prior to 36.0 allows user-assisted remote malicious users to read arbitrary files or execute arbitrary JavaScript code with chrome privileges via a crafted web site that is accessed with unspecified mouse and keyboard actions.
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
NA
CVE-2015-0822
The Form Autocompletion feature in Mozilla Firefox prior to 36.0, Firefox ESR 31.x prior to 31.5, and Thunderbird prior to 31.5 allows remote malicious users to read arbitrary files via crafted JavaScript code.
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
NA
CVE-2015-0823
Multiple use-after-free vulnerabilities in OpenType Sanitiser, as used in Mozilla Firefox prior to 36.0, might allow remote malicious users to trigger problematic Developer Console information or possibly have unspecified other impact by leveraging incorrect macro expansion, rela...
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Opentype Sanitiser Project Opentype Sanitiser
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
NA
CVE-2015-0824
The mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox prior to 36.0 allows remote malicious users to cause a denial of service (out-of-bounds write of zero values, and application crash) via vectors that trigger use of DrawTarget and the Cairo l...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
NA
CVE-2015-0819
The UITour::onPageEvent function in Mozilla Firefox prior to 36.0 does not ensure that an API call originates from a foreground tab, which allows remote malicious users to conduct spoofing and clickjacking attacks by leveraging access to a UI Tour web site.
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »