Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox esr - vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2018-12368
Windows 10 does not warn users before opening executable files with the SettingContent-ms extension even when they have been downloaded from the internet and have the "Mark of the Web." Without the warning, unsuspecting users unfamiliar with this new file type might run...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
1 Article
9.3
CVSSv2
CVE-2017-7845
A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. Note: This atta...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
9.3
CVSSv2
CVE-2016-2799
Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 prior to 1.3.6, as used in Mozilla Firefox prior to 45.0 and Firefox ESR 38.x prior to 38.7, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via ...
Oracle Linux 5.0
Oracle Linux 6
Oracle Linux 7
Suse Linux Enterprise 12.0
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.6.1
Mozilla Firefox Esr 38.4.0
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.5.1
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.5.0
Mozilla Firefox Esr 38.6.0
Mozilla Firefox Esr 38.1.1
Mozilla Firefox
Sil Graphite2
9.3
CVSSv2
CVE-2016-2794
The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 prior to 1.3.6, as used in Mozilla Firefox prior to 45.0 and Firefox ESR 38.x prior to 38.7, allows remote malicious users to cause a denial of service (buffer over-read) or possibly have unspecified other...
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.6.1
Mozilla Firefox Esr 38.4.0
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.5.1
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.5.0
Mozilla Firefox Esr 38.6.0
Mozilla Firefox Esr 38.1.1
Mozilla Firefox
Sil Graphite2
Suse Linux Enterprise 12.0
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Oracle Linux 5.0
Oracle Linux 6
Oracle Linux 7
9.3
CVSSv2
CVE-2014-1555
Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7 allows remote malicious users to execute arbitrary code via vectors that trigger a FireOnStateChange event.
Mozilla Firefox Esr 24.5
Mozilla Firefox Esr 24.2
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.2
Mozilla Firefox Esr 24.0
Mozilla Firefox Esr 24.0.2
Mozilla Firefox Esr 24.1.0
Mozilla Thunderbird
Mozilla Firefox Esr 24.4
Mozilla Firefox
Mozilla Thunderbird 24.5
Mozilla Firefox Esr 24.3
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.4
Mozilla Firefox Esr 24.0.1
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.0
Mozilla Firefox Esr 24.6
Mozilla Firefox Esr 24.1.1
9.3
CVSSv2
CVE-2014-1556
Mozilla Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7 allow remote malicious users to execute arbitrary code via crafted WebGL content constructed with the Cesium JavaScript library.
Mozilla Firefox Esr 24.5
Mozilla Firefox Esr 24.2
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.2
Mozilla Firefox Esr 24.0
Mozilla Firefox Esr 24.0.2
Mozilla Firefox Esr 24.1.0
Mozilla Thunderbird
Mozilla Firefox Esr 24.4
Mozilla Firefox
Mozilla Thunderbird 24.5
Mozilla Firefox Esr 24.3
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.4
Mozilla Firefox Esr 24.0.1
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.0
Mozilla Firefox Esr 24.6
Mozilla Firefox Esr 24.1.1
9.3
CVSSv2
CVE-2014-1557
The ConvolveHorizontally function in Skia, as used in Mozilla Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7, does not properly handle the discarding of image data during function execution, which allows remote malicious users to execute arbi...
Oracle Solaris 11.3
Mozilla Firefox Esr 24.5
Mozilla Firefox Esr 24.2
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.2
Mozilla Firefox Esr 24.0
Mozilla Firefox Esr 24.0.2
Mozilla Firefox Esr 24.1.0
Mozilla Thunderbird
Mozilla Firefox Esr 24.4
Mozilla Firefox
Mozilla Thunderbird 24.5
Mozilla Firefox Esr 24.3
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.4
Mozilla Firefox Esr 24.0.1
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.0
Mozilla Firefox Esr 24.6
Mozilla Firefox Esr 24.1.1
Debian Debian Linux 7.0
9.3
CVSSv2
CVE-2014-1513
TypedArrayObject.cpp in Mozilla Firefox prior to 28.0, Firefox ESR 24.x prior to 24.4, Thunderbird prior to 24.4, and SeaMonkey prior to 2.25 does not prevent a zero-length transition during use of an ArrayBuffer object, which allows remote malicious users to execute arbitrary co...
Mozilla Seamonkey
Mozilla Firefox Esr
Mozilla Firefox
Mozilla Thunderbird
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Opensuse Opensuse 12.3
Suse Suse Linux Enterprise Software Development Kit 11.0
Opensuse Opensuse 11.4
Opensuse Opensuse 13.1
Suse Suse Linux Enterprise Desktop 11
Suse Suse Linux Enterprise Server 11
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server Eus 6.5
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Server Aus 6.5
Redhat Enterprise Linux Server Tus 6.5
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Eus 6.5
9.3
CVSSv2
CVE-2013-5604
The txXPathNodeUtils::getBaseURI function in the XSLT processor in Mozilla Firefox prior to 25.0, Firefox ESR 17.x prior to 17.0.10 and 24.x prior to 24.1, Thunderbird prior to 24.1, Thunderbird ESR 17.x prior to 17.0.10, and SeaMonkey prior to 2.22 does not properly initialize d...
Mozilla Thunderbird Esr 17.0.8
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.7
Mozilla Thunderbird Esr 17.0.5
Mozilla Thunderbird Esr 17.0.6
Mozilla Thunderbird Esr 17.0.9
Mozilla Thunderbird Esr 17.0.4
Mozilla Thunderbird Esr 17.0
Mozilla Seamonkey 2.0.10
Mozilla Seamonkey 2.13.1
Mozilla Seamonkey 2.21
Mozilla Seamonkey 2.15
Mozilla Seamonkey 2.20
Mozilla Seamonkey 2.0.13
Mozilla Seamonkey 2.12.1
Mozilla Seamonkey 2.13.2
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.0.4
Mozilla Seamonkey 2.10
9.3
CVSSv2
CVE-2013-1685
Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 allows remote malicious users to execute arbitrary code or cause a de...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0.1
Mozilla Firefox 20.0
Mozilla Firefox
Mozilla Firefox Esr 17.0.5
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.2
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr 17.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »