Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 43.0 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-1947
Mozilla Firefox 43.x mishandles attempts to connect to the Application Reputation service, which makes it easier for remote malicious users to trigger an unintended download by leveraging the absence of reputation data.
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Mozilla Firefox 43.0
Mozilla Firefox 43.0.4
Mozilla Firefox 43.0.3
Mozilla Firefox 43.0.2
Mozilla Firefox 43.0.1
6.8
CVSSv2
CVE-2015-7204
Mozilla Firefox prior to 43.0 does not properly store the properties of unboxed objects, which allows remote malicious users to execute arbitrary code via crafted JavaScript variable assignments.
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Mozilla Firefox 41.0
Mozilla Firefox 41.0.2
Mozilla Firefox 41.0.1
Mozilla Firefox
10
CVSSv2
CVE-2015-7202
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 43.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Fedoraproject Fedora 23
Fedoraproject Fedora 22
5
CVSSv2
CVE-2015-7211
Mozilla Firefox prior to 43.0 mishandles the # (number sign) character in a data: URI, which allows remote malicious users to spoof web sites via unspecified vectors.
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
5
CVSSv2
CVE-2015-7208
Mozilla Firefox prior to 43.0 stores cookies containing vertical tab characters, which allows remote malicious users to obtain sensitive information by reading HTTP Cookie headers.
Mozilla Firefox
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
4
CVSSv2
CVE-2015-7223
The WebExtension APIs in Mozilla Firefox prior to 43.0 allow remote malicious users to gain privileges, and possibly obtain sensitive information or conduct cross-site scripting (XSS) attacks, via a crafted web site.
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
5
CVSSv2
CVE-2015-7218
The HTTP/2 implementation in Mozilla Firefox prior to 43.0 allows remote malicious users to cause a denial of service (integer underflow, assertion failure, and application exit) via a single-byte header frame that triggers incorrect memory allocation.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Mozilla Firefox
4.3
CVSSv2
CVE-2015-7217
The gdk-pixbuf configuration in Mozilla Firefox prior to 43.0 on Linux GNOME platforms incorrectly enables the TGA decoder, which allows remote malicious users to cause a denial of service (heap-based buffer overflow) via a crafted Truevision TGA image.
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Fedoraproject Fedora 23
Fedoraproject Fedora 22
5
CVSSv2
CVE-2015-7219
The HTTP/2 implementation in Mozilla Firefox prior to 43.0 allows remote malicious users to cause a denial of service (integer underflow, assertion failure, and application exit) via a malformed PushPromise frame that triggers decompressed-buffer length miscalculation and incorre...
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
10
CVSSv2
CVE-2015-7220
Buffer overflow in the XDRBuffer::grow function in js/src/vm/Xdr.cpp in Mozilla Firefox prior to 43.0 might allow remote malicious users to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »