Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 24.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1560
Mozilla Firefox prior to 31.0 and Thunderbird prior to 31.0 allow remote malicious users to cause a denial of service (X.509 certificate parsing outage) via a crafted certificate that does not use ASCII character encoding in a required context.
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.2
Mozilla Thunderbird
Mozilla Thunderbird 24.6
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.0
Mozilla Firefox
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.1
NA
CVE-2014-1539
Mozilla Firefox prior to 30.0 and Thunderbird up to and including 24.6 on OS X do not ensure visibility of the cursor after interaction with a Flash object and a DIV element, which makes it easier for remote malicious users to conduct clickjacking attacks via JavaScript code that...
Mozilla Thunderbird
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.1.1
Mozilla Firefox
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.3
NA
CVE-2014-1527
Mozilla Firefox prior to 29.0 on Android allows remote malicious users to spoof the address bar via crafted JavaScript code that uses DOM events to prevent the reemergence of the actual address bar after scrolling has taken it off of the screen.
Fedoraproject Fedora 19
Mozilla Firefox
Mozilla Firefox 27.0.1
Mozilla Firefox 27.0
Mozilla Firefox 26.0
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.12
Mozilla Firefox 1.5.5
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.8
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
Mozilla Firefox 3.0.15
NA
CVE-2014-1501
Mozilla Firefox prior to 28.0 on Android allows remote malicious users to bypass the Same Origin Policy and access arbitrary file: URLs via vectors involving the "Open Link in New Tab" menu selection.
Oracle Solaris 11.3
Mozilla Firefox 0.10
Mozilla Firefox 0.2
Mozilla Firefox 0.7.1
Mozilla Firefox 0.9
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5.5
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.18
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.8
Mozilla Firefox 3.0.19
Mozilla Firefox 3.0.11
NA
CVE-2014-1506
Directory traversal vulnerability in Android Crash Reporter in Mozilla Firefox prior to 28.0 on Android allows malicious users to trigger the transmission of local files to arbitrary servers, or cause a denial of service (application crash), via a crafted application that specifi...
Mozilla Firefox
Mozilla Firefox 27.0
Mozilla Firefox 26.0
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.12
Mozilla Firefox 1.5.5
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.8
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
Mozilla Firefox 3.0.15
Mozilla Firefox 3.0.16
NA
CVE-2014-1489
Mozilla Firefox prior to 27.0 does not properly restrict access to about:home buttons by script on other pages, which allows user-assisted remote malicious users to cause a denial of service (session restore) via a crafted web site.
Oracle Solaris 11.3
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Mozilla Firefox 0.4
Mozilla Firefox 0.5
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.5.0.7
Mozilla Firefox
Mozilla Firefox 0.1
Mozilla Firefox 0.6
Mozilla Firefox 0.6.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.7
NA
CVE-2014-1484
Mozilla Firefox prior to 27.0 on Android 4.2 and previous versions creates system-log entries containing profile paths, which allows malicious users to obtain sensitive information via a crafted application.
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Mozilla Firefox 0.4
Mozilla Firefox 0.5
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.7
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Firefox 3.0.18
Mozilla Firefox 3.0
NA
CVE-2013-5611
Mozilla Firefox prior to 26.0 does not properly remove the Application Installation doorhanger, which makes it easier for remote malicious users to spoof a Web App installation site by controlling the timing of page navigation.
Oracle Solaris 11.3
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Desktop 11
Opensuse Project Opensuse 12.3
Opensuse Opensuse 13.1
Opensuse Project Opensuse 11.4
Mozilla Firefox 0.10
Mozilla Firefox 0.2
Mozilla Firefox 0.7.1
Mozilla Firefox 0.9
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.3
NA
CVE-2013-5592
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 25.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 20.0.1
Mozilla Firefox 20.0
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0
Mozilla Firefox
Mozilla Firefox 23.0.1
Mozilla Firefox 23.0
Mozilla Firefox 22.0
Mozilla Firefox 21.0
NA
CVE-2013-5598
PDF.js in Mozilla Firefox prior to 25.0 and Firefox ESR 24.x prior to 24.1 does not properly handle the appending of an IFRAME element, which allows remote malicious users to read arbitrary files or execute arbitrary JavaScript code with chrome privileges by using this element wi...
Mozilla Firefox Esr 24.0.1
Mozilla Firefox Esr 24.0.2
Mozilla Firefox Esr 24.0
Mozilla Firefox 21.0
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
Mozilla Firefox 23.0
Mozilla Firefox 19.0
Mozilla Firefox 22.0
Mozilla Firefox
Mozilla Firefox 20.0
Mozilla Firefox 23.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »