Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla thunderbird esr vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2018-12368
Windows 10 does not warn users before opening executable files with the SettingContent-ms extension even when they have been downloaded from the internet and have the "Mark of the Web." Without the warning, unsuspecting users unfamiliar with this new file type might run...
Mozilla Thunderbird
Mozilla Firefox
Mozilla Firefox Esr
1 Article
828
VMScore
CVE-2017-7845
A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. Note: This atta...
Mozilla Firefox Esr
Mozilla Firefox
Mozilla Thunderbird
828
VMScore
CVE-2016-2794
The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 prior to 1.3.6, as used in Mozilla Firefox prior to 45.0 and Firefox ESR 38.x prior to 38.7, allows remote malicious users to cause a denial of service (buffer over-read) or possibly have unspecified other...
Mozilla Firefox Esr 38.6.0
Mozilla Firefox Esr 38.5.1
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.0.1
Mozilla Firefox
Mozilla Firefox Esr 38.6.1
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.1.1
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox Esr 38.5.0
Mozilla Firefox Esr 38.4.0
Mozilla Firefox Esr 38.0
Sil Graphite2
Suse Linux Enterprise 12.0
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Oracle Linux 6
Oracle Linux 7
Oracle Linux 5.0
828
VMScore
CVE-2016-2799
Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 prior to 1.3.6, as used in Mozilla Firefox prior to 45.0 and Firefox ESR 38.x prior to 38.7, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via ...
Oracle Linux 5.0
Oracle Linux 7
Oracle Linux 6
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Suse Linux Enterprise 12.0
Opensuse Leap 42.1
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox Esr 38.5.0
Mozilla Firefox Esr 38.4.0
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.6.0
Mozilla Firefox Esr 38.5.1
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.0.5
Mozilla Firefox
Mozilla Firefox Esr 38.6.1
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.1.1
Sil Graphite2
828
VMScore
CVE-2014-1555
Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7 allows remote malicious users to execute arbitrary code via vectors that trigger a FireOnStateChange event.
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Firefox Esr 24.1.1
Mozilla Firefox Esr 24.2
Mozilla Thunderbird
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.4
Mozilla Firefox Esr 24.0
Mozilla Firefox Esr 24.6
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Firefox Esr 24.3
Mozilla Firefox Esr 24.4
Mozilla Firefox Esr 24.0.1
Mozilla Firefox Esr 24.5
Mozilla Firefox
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Firefox Esr 24.0.2
Mozilla Firefox Esr 24.1.0
828
VMScore
CVE-2014-1556
Mozilla Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7 allow remote malicious users to execute arbitrary code via crafted WebGL content constructed with the Cesium JavaScript library.
Mozilla Thunderbird
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.4
Mozilla Firefox Esr 24.0
Mozilla Firefox Esr 24.5
Mozilla Firefox
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Firefox Esr 24.0.1
Mozilla Firefox Esr 24.0.2
Mozilla Firefox Esr 24.1.0
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Firefox Esr 24.1.1
Mozilla Firefox Esr 24.2
Mozilla Firefox Esr 24.6
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Firefox Esr 24.3
Mozilla Firefox Esr 24.4
828
VMScore
CVE-2014-1557
The ConvolveHorizontally function in Skia, as used in Mozilla Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7, does not properly handle the discarding of image data during function execution, which allows remote malicious users to execute arbi...
Oracle Solaris 11.3
Mozilla Firefox Esr 24.6
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Firefox Esr 24.2
Mozilla Firefox Esr 24.3
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Firefox Esr 24.1.0
Mozilla Firefox Esr 24.1.1
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Firefox Esr 24.0.1
Mozilla Firefox Esr 24.0.2
Mozilla Firefox
Mozilla Thunderbird
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.4
Mozilla Firefox Esr 24.0
Mozilla Firefox Esr 24.4
Mozilla Firefox Esr 24.5
Debian Debian Linux 6.0
828
VMScore
CVE-2013-5604
The txXPathNodeUtils::getBaseURI function in the XSLT processor in Mozilla Firefox prior to 25.0, Firefox ESR 17.x prior to 17.0.10 and 24.x prior to 24.1, Thunderbird prior to 24.1, Thunderbird ESR 17.x prior to 17.0.10, and SeaMonkey prior to 2.22 does not properly initialize d...
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.5
Mozilla Thunderbird Esr 17.0.4
Mozilla Thunderbird Esr 17.0.7
Mozilla Thunderbird Esr 17.0.6
Mozilla Thunderbird Esr 17.0.9
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.8
Mozilla Seamonkey
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.13.1
Mozilla Seamonkey 2.13
Mozilla Seamonkey 2.12.1
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.11
Mozilla Seamonkey 2.10
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.0.4
Mozilla Seamonkey 2.0.3
Mozilla Seamonkey 2.0.1
828
VMScore
CVE-2013-1685
Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 allows remote malicious users to execute arbitrary code or cause a de...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 20.0.1
Mozilla Firefox
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.5
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.4
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
828
VMScore
CVE-2013-1687
The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) implementations in Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 do not properly restrict XBL user-defined functions, which allow...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0.5
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0
Mozilla Thunderbird
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »