Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox esr vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-1586
content/base/src/nsDocument.cpp in Mozilla Firefox prior to 33.0, Firefox ESR 31.x prior to 31.2, and Thunderbird 31.x prior to 31.2 does not consider whether WebRTC video sharing is occurring, which allows remote malicious users to obtain sensitive information from the local cam...
Mozilla Firefox 30.0
Mozilla Firefox 31.1.0
Mozilla Firefox 31.0
Mozilla Firefox
Mozilla Thunderbird 31.0
Mozilla Thunderbird 31.1.0
Mozilla Firefox Esr 31.1.0
Mozilla Firefox Esr 31.0
6.8
CVSSv2
CVE-2011-3062
Off-by-one error in the OpenType Sanitizer in Google Chrome prior to 18.0.1025.142 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a crafted OpenType file.
Google Chrome
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Thunderbird Esr
6.2
CVSSv2
CVE-2013-1726
Mozilla Updater in Mozilla Firefox prior to 24.0, Firefox ESR 17.x prior to 17.0.9, Thunderbird prior to 24.0, Thunderbird ESR 17.x prior to 17.0.9, and SeaMonkey prior to 2.21 does not ensure exclusive access to a MAR file, which allows local users to gain privileges by creating...
Mozilla Thunderbird Esr 17.0.7
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.8
Mozilla Thunderbird Esr 17.0.4
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr 17.0.6
Mozilla Thunderbird Esr 17.0.5
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird 17.0.6
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.7
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.8
Mozilla Thunderbird
Mozilla Firefox 19.0.2
Mozilla Firefox
Mozilla Firefox 23.0
5.8
CVSSv2
CVE-2019-9812
Given a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading accounts.firefox.com in that process and forcing a log-in to a malicious Firefox Sync account. Preference settings that disable the sandbox are then syn...
Mozilla Firefox
Mozilla Firefox Esr
5
CVSSv2
CVE-2019-11733
When a master password is set, it is required to be entered again before stored passwords can be accessed in the 'Saved Logins' dialog. It was found that locally stored passwords can be copied to the clipboard thorough the 'copy password' context menu item wit...
Mozilla Firefox
Mozilla Firefox Esr
NA
CVE-2020-12413
The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.
Mozilla Firefox
Mozilla Firefox Esr
NA
CVE-2023-4052
The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted with the permissions of the uninstalling user account. This could be combined with creation of a junction (a form of symbo...
Mozilla Firefox
Mozilla Firefox Esr
NA
CVE-2023-4057
Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and Thunderbird 115.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox &l...
Mozilla Firefox
Mozilla Firefox Esr
4.3
CVSSv2
CVE-2019-11747
The "Forget about this site" feature in the History pane is intended to remove all saved user data that indicates a user has visited a site. This includes removing any HTTP Strict Transport Security (HSTS) settings received from sites that use it. Due to a bug, sites on...
Mozilla Firefox
Mozilla Firefox Esr
NA
CVE-2023-25744
Mmemory safety bugs present in Firefox 109 and Firefox ESR 102.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 110 and Firefox ...
Mozilla Firefox Esr
Mozilla Firefox
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »