Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 41.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-7204
Mozilla Firefox prior to 43.0 does not properly store the properties of unboxed objects, which allows remote malicious users to execute arbitrary code via crafted JavaScript variable assignments.
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Mozilla Firefox 41.0.1
Mozilla Firefox
Mozilla Firefox 41.0.2
Mozilla Firefox 41.0
NA
CVE-2015-7178
The ProgramBinary::linkAttributes function in libGLES in ANGLE, as used in Mozilla Firefox prior to 41.0 and Firefox ESR 38.x prior to 38.3 on Windows, mishandles shader access, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory cor...
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.1.1
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox
NA
CVE-2015-7179
The VertexBufferInterface::reserveVertexSpace function in libGLES in ANGLE, as used in Mozilla Firefox prior to 41.0 and Firefox ESR 38.x prior to 38.3 on Windows, incorrectly allocates memory for shader attribute arrays, which allows remote malicious users to execute arbitrary c...
Mozilla Firefox
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.1.1
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.2.1
NA
CVE-2015-7327
Mozilla Firefox prior to 41.0 does not properly restrict the availability of High Resolution Time API times, which allows remote malicious users to track last-level cache access, and consequently obtain sensitive information, via crafted JavaScript code that makes performance.now...
Mozilla Firefox
NA
CVE-2015-4476
Mozilla Firefox prior to 41.0 on Android allows user-assisted remote malicious users to spoof address-bar attributes by leveraging lack of navigation after a paste of a URL with a nonstandard scheme, as demonstrated by spoofing an SSL attribute.
Mozilla Firefox
NA
CVE-2015-4507
The SavedStacks class in the JavaScript implementation in Mozilla Firefox prior to 41.0, when the Debugger API is enabled, allows remote malicious users to cause a denial of service (getSlotRef assertion failure and application exit) or possibly execute arbitrary code via a craft...
Mozilla Firefox
NA
CVE-2015-4508
Mozilla Firefox prior to 41.0, when reader mode is enabled, allows remote malicious users to spoof the relationship between address-bar URLs and web content via a crafted web site.
Mozilla Firefox
NA
CVE-2015-4510
Race condition in the WorkerPrivate::NotifyFeatures function in Mozilla Firefox prior to 41.0 allows remote malicious users to execute arbitrary code or cause a denial of service (use-after-free and application crash) by leveraging improper interaction between shared workers and ...
Mozilla Firefox
NA
CVE-2015-4512
gfx/2d/DataSurfaceHelpers.cpp in Mozilla Firefox prior to 41.0 on Linux improperly attempts to use the Cairo library with 32-bit color-depth surface creation followed by 16-bit color-depth surface display, which allows remote malicious users to obtain sensitive information from p...
Mozilla Firefox
NA
CVE-2015-4516
Mozilla Firefox prior to 41.0 allows remote malicious users to bypass certain ECMAScript 5 (aka ES5) API protection mechanisms and modify immutable properties, and consequently execute arbitrary JavaScript code with chrome privileges, via a crafted web page that does not use ES5 ...
Mozilla Firefox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »