Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox esr 17.0.7 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-25193
hb-ot-layout-gsubgpos.hh in HarfBuzz up to and including 6.0.0 allows malicious users to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.
Harfbuzz Project Harfbuzz
Fedoraproject Fedora 36
NA
CVE-2015-0822
The Form Autocompletion feature in Mozilla Firefox prior to 36.0, Firefox ESR 31.x prior to 31.5, and Thunderbird prior to 31.5 allows remote malicious users to read arbitrary files via crafted JavaScript code.
Mozilla Firefox 32.0
Mozilla Firefox 31.1.0
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.22
Mozilla Firefox 3.6.21
Mozilla Firefox 3.6.14
Mozilla Firefox 3.6.13
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.17
Mozilla Firefox 3.5.16
Mozilla Firefox 3.5
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.2
Mozilla Firefox
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.26
Mozilla Firefox 3.6.25
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.17
NA
CVE-2015-0827
Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox prior to 36.0, Firefox ESR 31.x prior to 31.5, and Thunderbird prior to 31.5 allows remote malicious users to obtain sensitive information from uninitialized process memory via a malformed SVG gr...
Mozilla Firefox 30.0
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.27
Mozilla Firefox 3.6.26
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.10
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.13
Mozilla Firefox 3.5.12
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.17
Mozilla Firefox 3.0.16
Mozilla Firefox 3.0
Mozilla Firefox 29.0.1
Mozilla Firefox 25.0
Mozilla Firefox 24.1.1
Mozilla Firefox 20.0.1
Mozilla Firefox 20.0
NA
CVE-2015-0831
Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox prior to 36.0, Firefox ESR 31.x prior to 31.5, and Thunderbird prior to 31.5 allows remote malicious users to execute arbitrary code or cause a denial of service (...
Mozilla Thunderbird
Mozilla Thunderbird 31.3
Mozilla Thunderbird 31.0
Mozilla Thunderbird 31.2
Mozilla Thunderbird 31.1.2
Mozilla Firefox 33.0
Mozilla Firefox 32.0
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.22
Mozilla Firefox 3.6.21
Mozilla Firefox 3.6.15
Mozilla Firefox 3.6.14
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.17
Mozilla Firefox 3.5.16
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.19
1 Article
NA
CVE-2015-0833
Multiple untrusted search path vulnerabilities in updater.exe in Mozilla Firefox prior to 36.0, Firefox ESR 31.x prior to 31.5, and Thunderbird prior to 31.5 on Windows, when the Maintenance Service is not used, allow local users to gain privileges via a Trojan horse DLL in (1) t...
Opensuse Evergreen 11.4
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Mozilla Firefox 31.1.0
Mozilla Firefox 31.0
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.28
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.12
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.15
Mozilla Firefox 3.5.14
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.19
Mozilla Firefox 3.0.18
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.1
Mozilla Firefox 33.0
NA
CVE-2015-0836
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 36.0, Firefox ESR 31.x prior to 31.5, and Thunderbird prior to 31.5 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbit...
Mozilla Firefox Esr 31.1.1
Mozilla Firefox Esr 31.2
Mozilla Firefox Esr 31.5
Mozilla Firefox Esr 31.0
Mozilla Firefox Esr 31.1
Mozilla Firefox Esr 31.3
Mozilla Firefox Esr 31.4
Mozilla Thunderbird 31.2
Mozilla Thunderbird 31.1.2
Mozilla Thunderbird 31.0
Mozilla Thunderbird
Mozilla Thunderbird 31.3
Mozilla Firefox 31.0
Mozilla Firefox 30.0
Mozilla Firefox 3.6.28
Mozilla Firefox 3.6.27
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.11
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.4
1 Article
NA
CVE-2013-5607
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) prior to 4.10.2, as used in Firefox prior to 25.0.1, Firefox ESR 17.x prior to 17.0.11 and 24.x prior to 24.1.1, and SeaMonkey prior to 2.22.1, allows remote malicious users to cause a d...
Mozilla Netscape Portable Runtime 4.9.6
Mozilla Netscape Portable Runtime 4.9.5
Mozilla Netscape Portable Runtime 4.8.8
Mozilla Netscape Portable Runtime 4.8.7
Mozilla Netscape Portable Runtime
Mozilla Netscape Portable Runtime 4.10
Mozilla Netscape Portable Runtime 4.9
Mozilla Netscape Portable Runtime 4.8.9
Mozilla Netscape Portable Runtime 4.8.2
Mozilla Netscape Portable Runtime 4.8
Mozilla Netscape Portable Runtime 4.9.2
Mozilla Netscape Portable Runtime 4.9.1
Mozilla Netscape Portable Runtime 4.8.4
Mozilla Netscape Portable Runtime 4.8.3
Mozilla Netscape Portable Runtime 4.7.2
Mozilla Netscape Portable Runtime 4.7.1
Mozilla Netscape Portable Runtime 4.7
Mozilla Netscape Portable Runtime 4.6.2
Mozilla Netscape Portable Runtime 4.6.1
Mozilla Netscape Portable Runtime 4.1.2
Mozilla Netscape Portable Runtime 4.1.1
Mozilla Netscape Portable Runtime 4.7.6
NA
CVE-2013-5591
Unspecified vulnerability in the browser engine in Mozilla Firefox prior to 25.0, Firefox ESR 24.x prior to 24.1, Thunderbird prior to 24.1, and SeaMonkey prior to 2.22 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibl...
Mozilla Firefox 19.0
Mozilla Firefox 22.0
Mozilla Firefox
Mozilla Firefox 20.0
Mozilla Firefox 23.0.1
Mozilla Firefox 21.0
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
Mozilla Firefox 23.0
Mozilla Thunderbird 24.0
Mozilla Thunderbird
Mozilla Thunderbird 17.0.7
Mozilla Thunderbird 17.0.8
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird Esr 17.0.9
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird 17.0.6
NA
CVE-2013-5603
Use-after-free vulnerability in the nsContentUtils::ContentIsHostIncludingDescendantOf function in Mozilla Firefox prior to 25.0, Firefox ESR 24.x prior to 24.1, Thunderbird prior to 24.1, and SeaMonkey prior to 2.22 allows remote malicious users to execute arbitrary code or caus...
Mozilla Thunderbird
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.7
Mozilla Thunderbird 17.0.8
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird Esr 17.0.9
Mozilla Thunderbird 24.0
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird 17.0.6
Mozilla Firefox Esr 24.0
Mozilla Firefox Esr 24.0.1
Mozilla Firefox Esr 24.0.2
Mozilla Seamonkey 2.21
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.13.2
Mozilla Seamonkey 2.13
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.11
Mozilla Seamonkey 2.10
NA
CVE-2013-5604
The txXPathNodeUtils::getBaseURI function in the XSLT processor in Mozilla Firefox prior to 25.0, Firefox ESR 17.x prior to 17.0.10 and 24.x prior to 24.1, Thunderbird prior to 24.1, Thunderbird ESR 17.x prior to 17.0.10, and SeaMonkey prior to 2.22 does not properly initialize d...
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.5
Mozilla Thunderbird Esr 17.0.4
Mozilla Thunderbird Esr 17.0.7
Mozilla Thunderbird Esr 17.0.6
Mozilla Thunderbird Esr 17.0.9
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.8
Mozilla Seamonkey
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.13.1
Mozilla Seamonkey 2.13
Mozilla Seamonkey 2.12.1
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.11
Mozilla Seamonkey 2.10
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.0.4
Mozilla Seamonkey 2.0.3
Mozilla Seamonkey 2.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »