Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firefox_esr vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2020-6827
When following a link that opened an intent://-schemed URL, causing a custom tab to be opened, Firefox for Android could be tricked into displaying the incorrect URI. <br> *Note: This issue only affects Firefox for Android. Other operating systems are unaffected.*. This vul...
Mozilla Firefox Esr
7.5
CVSSv3
CVE-2020-6828
A malicious Android application could craft an Intent that would have been processed by Firefox for Android and potentially result in a file overwrite in the user's profile directory. One exploitation vector for this would be to supply a user.js file providing arbitrary mali...
Mozilla Firefox Esr
NA
CVE-2013-1712
Multiple untrusted search path vulnerabilities in updater.exe in Mozilla Updater in Mozilla Firefox prior to 23.0, Firefox ESR 17.x prior to 17.0.8, Thunderbird prior to 17.0.8, and Thunderbird ESR 17.x prior to 17.0.8 on Windows 7, Windows Server 2008 R2, Windows 8, and Windows ...
Mozilla Thunderbird Esr 17.0.7
Mozilla Thunderbird Esr 17.0.6
Mozilla Firefox Esr 17.0.7
Mozilla Firefox Esr 17.0.6
Mozilla Thunderbird
Mozilla Firefox
Mozilla Firefox 19.0
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.1
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.3
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
NA
CVE-2013-1672
The Mozilla Maintenance Service in Mozilla Firefox prior to 21.0, Firefox ESR 17.x prior to 17.0.6, Thunderbird prior to 17.0.6, and Thunderbird ESR 17.x prior to 17.0.6 on Windows allows local users to bypass integrity verification and gain privileges via vectors involving junct...
Mozilla Firefox 20.0
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0.5
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0
Mozilla Thunderbird Esr 17.0.4
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr
Mozilla Thunderbird Esr 17.0.2
NA
CVE-2013-0799
Buffer overflow in the Mozilla Maintenance Service in Mozilla Firefox prior to 20.0, Firefox ESR 17.x prior to 17.0.5, Thunderbird prior to 17.0.5, and Thunderbird ESR 17.x prior to 17.0.5 on Windows allows local users to gain privileges via crafted arguments.
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.4
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.4
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.1
8.8
CVSSv3
CVE-2016-2824
The TSymbolTableLevel class in ANGLE, as used in Mozilla Firefox prior to 47.0 and Firefox ESR 45.x prior to 45.2 on Windows, allows remote malicious users to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact by trigge...
Mozilla Firefox Esr 45.1.0
Mozilla Firefox Esr 45.1.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Mozilla Firefox
5.5
CVSSv3
CVE-2017-5409
The Mozilla Windows updater can be called by a non-privileged user to delete an arbitrary local file by passing a special path to the callback parameter through the Mozilla Maintenance Service, which has privileged access. Note: This attack requires local system access and only a...
Mozilla Firefox
Mozilla Firefox Esr
7.8
CVSSv3
CVE-2017-7760
The Mozilla Windows updater modifies some files to be updated by reading the original file and applying changes to it. The location of the original file can be altered by a malicious user by passing a special path to the callback parameter through the Mozilla Maintenance Service,...
Mozilla Firefox
Mozilla Firefox Esr
2 Github repositories
7.8
CVSSv3
CVE-2017-7766
An attack using manipulation of "updater.ini" contents, used by the Mozilla Windows Updater, and privilege escalation through the Mozilla Maintenance Service to allow for arbitrary file execution and deletion by the Maintenance Service, which has privileged access. Note...
Mozilla Firefox
Mozilla Firefox Esr
5.5
CVSSv3
CVE-2017-7767
The Mozilla Maintenance Service can be invoked by an unprivileged user to overwrite arbitrary files with junk data using the Mozilla Windows Updater, which runs with the Maintenance Service's privileged access. Note: This attack requires local system access and only affects ...
Mozilla Firefox
Mozilla Firefox Esr
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »