Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox esr 10.0 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-6865
`EncryptingOutputStream` was susceptible to exposing uninitialized data. This issue could only be abused in order to write data to a local disk which may have implications for private browsing mode. This vulnerability affects Firefox ESR < 115.6 and Firefox < 121.
Mozilla Firefox
Mozilla Firefox Esr
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
8.8
CVSSv3
CVE-2020-15673
Mozilla developers reported memory safety bugs present in Firefox 80 and Firefox ESR 78.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Fire...
Mozilla Firefox Esr
Mozilla Thunderbird
Mozilla Firefox
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
1 Article
6.1
CVSSv3
CVE-2020-15676
Firefox sometimes ran the onload handler for SVG elements that the DOM sanitizer decided to remove, resulting in JavaScript being executed after pasting attacker-controlled data into a contenteditable element. This vulnerability affects Firefox < 81, Thunderbird < 78.3, and...
Mozilla Firefox Esr
Mozilla Thunderbird
Mozilla Firefox
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
6.1
CVSSv3
CVE-2020-15677
By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the site displayed in the download file dialog to show the original site (the one suffering from the open redirect) rather than the site the file was actually downloaded from. This vulnerabi...
Mozilla Firefox Esr
Mozilla Thunderbird
Mozilla Firefox
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
8.8
CVSSv3
CVE-2020-15678
When recursing through graphical layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free. This occurs because the function APZCTreeManager::ComputeClippedCompositionBounds did not follow iterator invalidation rules. This vulnerability ...
Mozilla Firefox Esr
Mozilla Thunderbird
Mozilla Firefox
Opensuse Leap 15.1
Opensuse Leap 15.2
Debian Debian Linux 9.0
Debian Debian Linux 10.0
9.8
CVSSv3
CVE-2020-15683
Mozilla developers and community members reported memory safety bugs present in Firefox 81 and Firefox ESR 78.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vuln...
Mozilla Firefox Esr
Mozilla Thunderbird
Mozilla Firefox
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
NA
CVE-2012-3105
The glBufferData function in the WebGL implementation in Mozilla Firefox 4.x up to and including 12.0, Firefox ESR 10.x prior to 10.0.5, Thunderbird 5.0 up to and including 12.0, Thunderbird ESR 10.x prior to 10.0.5, and SeaMonkey prior to 2.10 does not properly mitigate an unspe...
Mozilla Firefox 4.0
Mozilla Firefox 4.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 6.0.1
Mozilla Firefox 10.0.2
Mozilla Firefox 10.0
Mozilla Firefox Esr 10.0.3
Mozilla Firefox Esr 10.0.4
Mozilla Thunderbird 8.0
Mozilla Thunderbird 9.0.1
Mozilla Thunderbird 11.0
Mozilla Thunderbird 12.0
Mozilla Seamonkey 2.9
Mozilla Seamonkey 2.8
Mozilla Seamonkey 2.7.1
Mozilla Seamonkey 2.7
Mozilla Seamonkey 2.6
Mozilla Seamonkey 2.5
Mozilla Seamonkey 2.3.3
Mozilla Seamonkey 2.3
Mozilla Seamonkey 2.2
Mozilla Seamonkey 2.1
NA
CVE-2012-1937
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x up to and including 12.0, Firefox ESR 10.x prior to 10.0.5, Thunderbird 5.0 up to and including 12.0, Thunderbird ESR 10.x prior to 10.0.5, and SeaMonkey prior to 2.10 allow remote malicious users t...
Mozilla Firefox 4.0
Mozilla Firefox 7.0.1
Mozilla Firefox 7.0
Mozilla Firefox 10.0.1
Mozilla Firefox 11.0
Mozilla Thunderbird 5.0
Mozilla Thunderbird 6.0
Mozilla Thunderbird 9.0
Mozilla Thunderbird 10.0.2
Mozilla Thunderbird Esr 10.0
Mozilla Thunderbird Esr 10.0.1
Mozilla Seamonkey 2.8
Mozilla Seamonkey 2.7.2
Mozilla Seamonkey 2.7
Mozilla Seamonkey 2.6
Mozilla Seamonkey 2.5
Mozilla Seamonkey 2.4
Mozilla Seamonkey 2.3
Mozilla Seamonkey 2.3.1
Mozilla Seamonkey 2.2
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.0.8
NA
CVE-2012-1944
The Content Security Policy (CSP) implementation in Mozilla Firefox 4.x up to and including 12.0, Firefox ESR 10.x prior to 10.0.5, Thunderbird 5.0 up to and including 12.0, Thunderbird ESR 10.x prior to 10.0.5, and SeaMonkey prior to 2.10 does not block inline event handlers, wh...
Mozilla Firefox 4.0
Mozilla Firefox 5.0
Mozilla Firefox 8.0
Mozilla Firefox 8.0.1
Mozilla Firefox 12.0
Mozilla Firefox Esr 10.0
Mozilla Thunderbird 6.0.1
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 10.0.3
Mozilla Thunderbird 10.0.1
Mozilla Thunderbird Esr 10.0.3
Mozilla Thunderbird Esr 10.0.4
Mozilla Seamonkey 2.8
Mozilla Seamonkey 2.7
Mozilla Seamonkey 2.6
Mozilla Seamonkey 2.6.1
Mozilla Seamonkey 2.4.1
Mozilla Seamonkey 2.4
Mozilla Seamonkey 2.3
Mozilla Seamonkey 2.3.2
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.0.7
NA
CVE-2012-1945
Mozilla Firefox 4.x up to and including 12.0, Firefox ESR 10.x prior to 10.0.5, Thunderbird 5.0 up to and including 12.0, Thunderbird ESR 10.x prior to 10.0.5, and SeaMonkey prior to 2.10 allow local users to obtain sensitive information via an HTML document that loads a shortcut...
Mozilla Firefox 4.0
Mozilla Firefox 7.0
Mozilla Firefox 8.0
Mozilla Firefox 11.0
Mozilla Firefox 12.0
Mozilla Thunderbird 6.0
Mozilla Thunderbird 6.0.1
Mozilla Thunderbird 10.0.2
Mozilla Thunderbird 10.0.3
Mozilla Thunderbird Esr 10.0.1
Mozilla Thunderbird Esr 10.0.2
Mozilla Seamonkey 2.8
Mozilla Seamonkey 2.7
Mozilla Seamonkey 2.6
Mozilla Seamonkey 2.4
Mozilla Seamonkey 2.4.1
Mozilla Seamonkey 2.3.1
Mozilla Seamonkey 2.3
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.0.8
Mozilla Seamonkey 2.0.7
Mozilla Seamonkey 2.0.12
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »