MozillaFirefox (SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSS package MozillaFirefox, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2021-4140 — CVSS 10.0 (critical): It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR <…
CVE-2022-34485 — CVSS 9.8 (critical): Mozilla developers Bryce Seager van Dyk and the Mozilla Fuzzing Team reported potential vulnerabilities present in Firefox 101. Some of…
CVE-2023-34416 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 113, Firefox ESR 102.11, and Thunderbird 102.12. Some of these bugs showed evidence of memory…
CVE-2023-5174 — CVSS 9.8 (critical): If Windows failed to duplicate a handle during process creation, the sandbox code may have inadvertently freed a pointer twice, resulting…
CVE-2023-5176 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2. Some of these bugs showed evidence of memory…
CVE-2022-34476 — CVSS 9.8 (critical): ASN.1 parsing of an indefinite SEQUENCE inside an indefinite GROUP could have resulted in the parser accepting malformed ASN.1. This…
CVE-2024-6611 — CVSS 9.8 (critical): A nested iframe, triggering a cross-site navigation, could send SameSite=Strict or Lax cookies. This vulnerability affects Firefox < 128…
CVE-2024-8387 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory…
CVE-2024-6602 — CVSS 9.8 (critical): A mismatch between allocator and deallocator could have led to memory corruption. This vulnerability affects Firefox < 128, Firefox ESR <…
CVE-2023-29531 — CVSS 9.8 (critical): An attacker could have caused an out of bounds memory access using WebGL APIs, leading to memory corruption and a potentially exploitable…
CVE-2023-4056 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ESR 102.13, Thunderbird 115.0, and Thunderbird 102.13. Some of these…
CVE-2024-8385 — CVSS 9.8 (critical): A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an exploitable type confusion vulnerability…
CVE-2022-46882 — CVSS 9.8 (critical): A use-after-free in WebGL extensions could have led to a potentially exploitable crash. This vulnerability affects Firefox < 107, Firefox…
CVE-2024-8381 — CVSS 9.8 (critical): A potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the `with`…
CVE-2024-3863 — CVSS 9.8 (critical): The executable file warning was not presented when downloading .xrm-ms files. *Note: This issue only affected Windows operating systems…
CVE-2023-5168 — CVSS 9.8 (critical): A compromised content process could have provided malicious data to `FilterNodeD2D1` resulting in an out-of-bounds write, leading to a…
CVE-2022-34470 — CVSS 9.8 (critical): Session history navigations may have led to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox < 102…
CVE-2024-9392 — CVSS 9.8 (critical): A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects Firefox < 131…
CVE-2022-31747 — CVSS 9.8 (critical): Mozilla developers Andrew McCreight, Nicolas B. Pierron, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 100…
CVE-2022-31737 — CVSS 9.8 (critical): A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash…
CVE-2022-31736 — CVSS 9.8 (critical): A malicious website could have learned the size of a cross-origin resource that supported Range requests. This vulnerability affects…
CVE-2022-29917 — CVSS 9.8 (critical): Mozilla developers Andrew McCreight, Gabriele Svelto, Tom Ritter and the Mozilla Fuzzing Team reported memory safety bugs present in…
CVE-2024-9401 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence…
CVE-2024-9402 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory…
CVE-2022-45406 — CVSS 9.8 (critical): If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on…
CVE-2024-11698 — CVSS 9.8 (critical): A flaw in handling fullscreen transitions may have inadvertently caused the application to become stuck in fullscreen mode when a modal…
CVE-2023-4057 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and Thunderbird 115.0. Some of these bugs showed evidence of memory…
CVE-2024-11693 — CVSS 9.8 (critical): The executable file warning was not presented when downloading .library-ms files. *Note: This issue only affected Windows operating…
CVE-2023-5730 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3. Some of these bugs showed evidence of memory…
CVE-2023-5731 — CVSS 9.8 (critical): Memory safety bugs present in Firefox 118. Some of these bugs showed evidence of memory corruption and we presume that with enough effort…
CVE-2024-8384 — CVSS 9.8 (critical): The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two…
CVE-2023-29542 — CVSS 9.8 (critical): A newline in a filename could have been used to bypass the file extension security mechanisms that replace malicious file extensions such…
CVE-2022-26384 — CVSS 9.6 (critical): If an attacker could control the contents of an iframe sandboxed with <code>allow-popups</code> but not <code>allow-scripts</code>, they…
CVE-2024-7519 — CVSS 9.6 (critical): Insufficient checks when processing graphics shared memory could have led to memory corruption. This could be leveraged by an attacker to…
CVE-2022-22759 — CVSS 9.6 (critical): If a document created a sandboxed iframe without <code>allow-scripts</code>, and subsequently appended an element to the iframe's document…
CVE-2023-6864 — CVSS 8.8 (high): Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory…
CVE-2023-4582 — CVSS 8.8 (high): Due to large allocation checks in Angle for glsl shaders being too lenient a buffer overflow could have occurred when allocating too much…
CVE-2023-4584 — CVSS 8.8 (high): Memory safety bugs present in Firefox 116, Firefox ESR 102.14, Firefox ESR 115.1, Thunderbird 102.14, and Thunderbird 115.1. Some of these…
CVE-2023-4585 — CVSS 8.8 (high): Memory safety bugs present in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1. Some of these bugs showed evidence of memory…
CVE-2022-1529 — CVSS 8.8 (high): An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading…
CVE-2022-34480 — CVSS 8.8 (high): Within the <code>lg_init()</code> function, if several allocations succeed but then one fails, an uninitialized pointer would have been…
CVE-2022-34481 — CVSS 8.8 (high): In the <code>nsTArray_Impl::ReplaceElementsAt()</code> function, an integer overflow could have occurred when the number of elements to…
CVE-2024-4777 — CVSS 8.8 (high): Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10. Some of these bugs showed evidence of memory…
CVE-2022-34482 — CVSS 8.8 (high): An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to…
CVE-2022-34483 — CVSS 8.8 (high): An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to…
CVE-2022-34484 — CVSS 8.8 (high): The Mozilla Fuzzing Team reported potential vulnerabilities present in Thunderbird 91.10. Some of these bugs showed evidence of memory…
CVE-2024-4770 — CVSS 8.8 (high): When saving a page to PDF, certain font styles could have led to a potential use-after-free crash. This vulnerability affects Firefox <…
CVE-2023-6207 — CVSS 8.8 (high): Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and…
CVE-2023-6208 — CVSS 8.8 (high): When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage…
CVE-2023-6212 — CVSS 8.8 (high): Memory safety bugs present in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4. Some of these bugs showed evidence of memory…
CVE-2023-6856 — CVSS 8.8 (high): The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue…
CVE-2024-4367 — CVSS 8.8 (high): A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This…
CVE-2023-6858 — CVSS 8.8 (high): Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM handling. This vulnerability affects Firefox…
CVE-2023-6859 — CVSS 8.8 (high): A use-after-free condition affected TLS socket creation when under memory pressure. This vulnerability affects Firefox ESR < 115.6…
CVE-2023-6861 — CVSS 8.8 (high): The `nsWindow::PickerOpen(void)` method was susceptible to a heap buffer overflow when running in headless mode. This vulnerability affects…
CVE-2023-6862 — CVSS 8.8 (high): A use-after-free was identified in the `nsDNSService::Init`. This issue appears to manifest rarely during start-up. This vulnerability…
CVE-2023-6863 — CVSS 8.8 (high): The `ShutdownObserver()` was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual…
CVE-2022-22756 — CVSS 8.8 (high): If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an…
CVE-2022-38473 — CVSS 8.8 (high): A cross-origin iframe referencing an XSLT document would inherit the parent domain's permissions (such as microphone or camera access)…
CVE-2024-0750 — CVSS 8.8 (high): A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions. This…
CVE-2024-0751 — CVSS 8.8 (high): A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox < 122, Firefox ESR < 115.7…
CVE-2024-0755 — CVSS 8.8 (high): Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs showed evidence of memory…
CVE-2024-3854 — CVSS 8.8 (high): In some code patterns the JIT incorrectly optimized switch statements and generated code with out-of-bounds-reads. This vulnerability…
CVE-2022-38477 — CVSS 8.8 (high): Mozilla developer Nika Layzell and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 103 and Firefox ESR 102.1. Some…
CVE-2022-38478 — CVSS 8.8 (high): Members the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 103, Firefox ESR 102.1, and Firefox ESR 91.12. Some of…
CVE-2022-46881 — CVSS 8.8 (high): An optimization in WebGL was incorrect in some cases, and could have led to memory corruption and a potentially exploitable crash. *Note*…
CVE-2023-0767 — CVSS 8.8 (high): An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag…
CVE-2022-28281 — CVSS 8.8 (high): If a compromised content process sent an unexpected number of WebAuthN Extensions in a Register command to the parent process, an out of…
CVE-2022-1802 — CVSS 8.8 (high): If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollution, they could have achieved execution…
CVE-2024-9400 — CVSS 8.8 (high): A potential memory corruption vulnerability could be triggered if an attacker had the ability to trigger an OOM at a specific moment during…
CVE-2023-23605 — CVSS 8.8 (high): Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 108 and Firefox ESR 102.6. Some of these…
CVE-2022-28289 — CVSS 8.8 (high): Mozilla developers and community members Nika Layzell, Andrew McCreight, Gabriele Svelto, and the Mozilla Fuzzing Team reported memory…
CVE-2023-25729 — CVSS 8.8 (high): Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code> resulting in extensions being able to…
CVE-2024-7528 — CVSS 8.8 (high): Incorrect garbage collection interaction in IndexedDB could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox…
CVE-2023-25732 — CVSS 8.8 (high): When encoding data from an <code>inputStream</code> in <code>xpcom</code> the size of the input being encoded was not correctly calculated…
CVE-2023-25735 — CVSS 8.8 (high): Cross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment…
CVE-2023-25737 — CVSS 8.8 (high): An invalid downcast from <code>nsTextNode</code> to <code>SVGElement</code> could have lead to undefined behavior. This vulnerability…
CVE-2022-29909 — CVSS 8.8 (high): Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin, bypassing the…
CVE-2023-25739 — CVSS 8.8 (high): Module load requests that failed were not being checked as to whether or not they were cancelled causing a use-after-free in…
CVE-2023-25744 — CVSS 8.8 (high): Mmemory safety bugs present in Firefox 109 and Firefox ESR 102.7. Some of these bugs showed evidence of memory corruption and we presume…
CVE-2023-25746 — CVSS 8.8 (high): Memory safety bugs present in Firefox ESR 102.7. Some of these bugs showed evidence of memory corruption and we presume that with enough…
CVE-2024-7527 — CVSS 8.8 (high): Unexpected marking work at the start of sweeping could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR…
CVE-2024-7522 — CVSS 8.8 (high): Editor code failed to check an attribute value. This could have led to an out-of-bounds read. This vulnerability affects Firefox < 129…
CVE-2024-9396 — CVSS 8.8 (high): It is currently unknown if this issue is exploitable but a condition may arise where the structured clone of certain objects could lead to…
CVE-2022-22744 — CVSS 8.8 (high): The constructed curl command from the "Copy as curl" feature in DevTools was not properly escaped for PowerShell. This could have lead to…
CVE-2024-7521 — CVSS 8.8 (high): Incomplete WebAssembly exception handing could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR <…
CVE-2022-2200 — CVSS 8.8 (high): If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading…
CVE-2023-28161 — CVSS 8.8 (high): If temporary "one-time" permissions, such as the ability to use the Camera, were granted to a document loaded using a file: URL, that…
CVE-2023-28162 — CVSS 8.8 (high): While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic type. This could have led to a…
CVE-2023-28176 — CVSS 8.8 (high): Memory safety bugs present in Firefox 110 and Firefox ESR 102.8. Some of these bugs showed evidence of memory corruption and we presume…
CVE-2023-28177 — CVSS 8.8 (high): Memory safety bugs present in Firefox 110. Some of these bugs showed evidence of memory corruption and we presume that with enough effort…
CVE-2024-7520 — CVSS 8.8 (high): A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. This vulnerability affects…
CVE-2023-29536 — CVSS 8.8 (high): An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an…
CVE-2023-29539 — CVSS 8.8 (high): When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL…
CVE-2023-29541 — CVSS 8.8 (high): Firefox did not properly handle downloads of files ending in <code>.desktop</code>, which can be interpreted to run attacker-controlled…
CVE-2022-31739 — CVSS 8.8 (high): When downloading files on Windows, the % character was not escaped, which could have lead to a download incorrectly being saved to…
CVE-2023-29550 — CVSS 8.8 (high): Memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these bugs showed evidence of memory corruption and we presume…
CVE-2024-6615 — CVSS 8.8 (high): Memory safety bugs present in Firefox 127 and Thunderbird 127. Some of these bugs showed evidence of memory corruption and we presume that…
CVE-2022-31740 — CVSS 8.8 (high): On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially…
CVE-2023-32207 — CVSS 8.8 (high): A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. This…
CVE-2022-31741 — CVSS 8.8 (high): A crafted CMS message could have been processed incorrectly, leading to an invalid memory read, and potentially further memory corruption…
CVE-2023-32213 — CVSS 8.8 (high): When reading a file, an uninitialized value could have been used as read limit. This vulnerability affects Firefox < 113, Firefox ESR <…
CVE-2023-32215 — CVSS 8.8 (high): Mozilla developers and community members Gabriele Svelto, Andrew Osmond, Emily McDonough, Sebastian Hengst, Andrew McCreight and the…
CVE-2024-6609 — CVSS 8.8 (high): When almost out-of-memory an elliptic curve key which was never allocated could have been freed again. This vulnerability affects Firefox <…
CVE-2023-3600 — CVSS 8.8 (high): During the worker lifecycle, a use-after-free condition could have occurred, which could have led to a potentially exploitable crash. This…
CVE-2023-37201 — CVSS 8.8 (high): An attacker could have triggered a use-after-free condition when creating a WebRTC connection over HTTPS. This vulnerability affects…
CVE-2023-37202 — CVSS 8.8 (high): Cross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment…
CVE-2022-22738 — CVSS 8.8 (high): Applying a CSS filter effect could have accessed out of bounds memory. This could have lead to a heap-buffer-overflow causing a potentially…
CVE-2022-34468 — CVSS 8.8 (high): An iframe that was not permitted to run scripts could do so if the user clicked on a <code>javascript:</code> link. This vulnerability…
CVE-2023-37209 — CVSS 8.8 (high): A use-after-free condition existed in `NotifyOnHistoryReload` where a `LoadingSessionHistoryEntry` object was freed and a reference to that…
CVE-2023-37211 — CVSS 8.8 (high): Memory safety bugs present in Firefox 114, Firefox ESR 102.12, and Thunderbird 102.12. Some of these bugs showed evidence of memory…
CVE-2023-37212 — CVSS 8.8 (high): Memory safety bugs present in Firefox 114. Some of these bugs showed evidence of memory corruption and we presume that with enough effort…
CVE-2024-6607 — CVSS 8.8 (high): It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay customValidity notifications from a…
CVE-2023-4047 — CVSS 8.8 (high): A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions. This…
CVE-2024-6605 — CVSS 8.8 (high): Firefox Android allowed immediate interaction with permission prompts. This could be used for tapjacking. This vulnerability affects…
CVE-2022-22751 — CVSS 8.8 (high): Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve…
CVE-2024-10467 — CVSS 8.8 (high): Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thunderbird 128.3. Some of these bugs showed evidence of memory…
CVE-2024-11691 — CVSS 8.8 (high): Certain WebGL operations on Apple silicon M series devices could have lead to an out-of-bounds write and memory corruption due to a flaw in…
CVE-2024-2614 — CVSS 8.8 (high): Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs showed evidence of memory…
CVE-2024-11697 — CVSS 8.8 (high): When handling keypress events, an attacker may have been able to trick a user into bypassing the "Open Executable File?" confirmation…
CVE-2024-11699 — CVSS 8.8 (high): Memory safety bugs present in Firefox 132, Firefox ESR 128.4, and Thunderbird 128.4. Some of these bugs showed evidence of memory…
CVE-2022-22740 — CVSS 8.8 (high): Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free…
CVE-2022-22761 — CVSS 8.8 (high): Web-accessible extension pages (pages with a moz-extension:// scheme) were not correctly enforcing the frame-ancestors directive when it…
CVE-2022-22763 — CVSS 8.8 (high): When a worker is shutdown, it was possible to cause script to run late in the lifecycle, at a point after where it should not be possible…
CVE-2022-40962 — CVSS 8.8 (high): Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety…
CVE-2022-42928 — CVSS 8.8 (high): Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory…
CVE-2022-42932 — CVSS 8.8 (high): Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some…
CVE-2022-22764 — CVSS 8.8 (high): Mozilla developers Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firefox ESR 91.5. Some of…
CVE-2022-2505 — CVSS 8.8 (high): Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 102. Some of these bugs showed evidence of…
CVE-2022-26381 — CVSS 8.8 (high): An attacker could have caused a use-after-free by forcing a text reflow in an SVG object leading to a potentially exploitable crash. This…
CVE-2022-45409 — CVSS 8.8 (high): The garbage collector could have been aborted in several states and zones and <code>GCRuntime::finishCollection</code> may not have been…
CVE-2022-45412 — CVSS 8.8 (high): When resolving a symlink such as <code>file:///proc/self/fd/1</code>, an error message may be produced where the symlink was resolved to a…
CVE-2024-8382 — CVSS 8.8 (high): Internal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web…
CVE-2022-45421 — CVSS 8.8 (high): Mozilla developers Andrew McCreight and Gabriele Svelto reported memory safety bugs present in Thunderbird 102.4. Some of these bugs showed…
CVE-2022-46871 — CVSS 8.8 (high): An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox < 108.
CVE-2022-46874 — CVSS 8.8 (high): A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its…
CVE-2022-46878 — CVSS 8.8 (high): Mozilla developers Randell Jesup, Valentin Gosu, Olli Pettay, and the Mozilla Fuzzing Team reported memory safety bugs present in…
CVE-2024-5696 — CVSS 8.6 (high): By manipulating the text in an `<input>` tag, an attacker could have caused corrupt memory leading to a potentially exploitable…
CVE-2022-46872 — CVSS 8.6 (high): An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC…
CVE-2023-4576 — CVSS 8.6 (high): On Windows, an integer overflow could occur in `RecordedSourceSurfaceCreation` which resulted in a heap buffer overflow potentially leaking…
CVE-2024-2608 — CVSS 8.4 (high): `AppendEncodedAttributeValue(), ExtraSpaceNeededForAttrEncoding()` and `AppendEncodedCharacters()` could have experienced integer…
CVE-2024-29944 — CVSS 8.4 (high): An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent…
CVE-2024-6606 — CVSS 8.2 (high): Clipboard code failed to check the index on an array access. This could have led to an out-of-bounds read. This vulnerability affects…
CVE-2023-25734 — CVSS 8.1 (high): After downloading a Windows <code>.url</code> shortcut from the local filesystem, an attacker could supply a remote path that would lead to…
CVE-2024-2612 — CVSS 8.1 (high): If an attacker could find a way to trigger a particular code path in `SafeRefPtr`, it could have triggered a crash or potentially be…
CVE-2024-2607 — CVSS 8.1 (high): Return registers were overwritten which could have allowed an attacker to execute arbitrary code. *Note:* This issue only affected Armv7-A…
CVE-2024-1553 — CVSS 8.1 (high): Memory safety bugs present in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7. Some of these bugs showed evidence of memory…
CVE-2022-42927 — CVSS 8.1 (high): A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via…
CVE-2024-7525 — CVSS 8.1 (high): It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response…
CVE-2022-34469 — CVSS 8.1 (high): When a TLS Certificate error occurs on a domain protected by the HSTS header, the browser should not allow the user to bypass the…
CVE-2024-3864 — CVSS 8.1 (high): Memory safety bug present in Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9. This bug showed evidence of memory corruption and we…
CVE-2024-5688 — CVSS 8.1 (high): If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant. This vulnerability…
CVE-2023-37203 — CVSS 7.8 (high): Insufficient validation in the Drag and Drop API in conjunction with social engineering, may have allowed an attacker to trick end-users…
CVE-2023-37208 — CVSS 7.8 (high): When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox <…
CVE-2024-3857 — CVSS 7.8 (high): The JIT created incorrect code for arguments in certain cases. This led to potential use-after-free crashes during garbage collection. This…
CVE-2023-4583 — CVSS 7.5 (high): When checking if the Browsing Context had been discarded in `HttpBaseChannel`, if the load group was not available then it was assumed to…
CVE-2023-5728 — CVSS 7.5 (high): During garbage collection extra operations were performed on a object that should not be. This could have led to a potentially exploitable…
CVE-2024-10458 — CVSS 7.5 (high): A permission leak could have occurred from a trusted site to an untrusted site via `embed` or `object` elements. This vulnerability affects…
CVE-2024-9399 — CVSS 7.5 (high): A website configured to initiate a specially crafted WebTransport session could crash the Firefox process leading to a denial of service…
CVE-2023-25743 — CVSS 7.5 (high): A lack of in app notification for entering fullscreen mode could have lead to a malicious website spoofing browser chrome.<br>*This bug…
CVE-2022-24713 — CVSS 7.5 (high): regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of…
CVE-2022-38476 — CVSS 7.5 (high): A data race could occur in the <code>PK11_ChangePW</code> function, potentially leading to a use-after-free vulnerability. In Firefox, this…
CVE-2024-9394 — CVSS 7.5 (high): An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. This…
CVE-2024-3852 — CVSS 7.5 (high): GetBoundName could return the wrong version of an object when JIT optimizations were applied. This vulnerability affects Firefox < 125…
CVE-2024-8383 — CVSS 7.5 (high): Firefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does…
CVE-2023-5724 — CVSS 7.5 (high): Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash. This vulnerability…
CVE-2024-0743 — CVSS 7.5 (high): An unchecked return value in TLS handshake code could have caused a potentially exploitable crash. This vulnerability affects Firefox <…
CVE-2023-4048 — CVSS 7.5 (high): An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low memory situations. This vulnerability…
CVE-2022-22741 — CVSS 7.5 (high): When resizing a popup while requesting fullscreen access, the popup would have become unable to leave fullscreen mode. This vulnerability…
CVE-2023-4050 — CVSS 7.5 (high): In some cases, an untrusted input stream was copied to a stack buffer without checking its size. This resulted in a potentially exploitable…
CVE-2024-1552 — CVSS 7.5 (high): Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior.*Note:* This issue only affects…
CVE-2023-4055 — CVSS 7.5 (high): When the number of cookies per domain was exceeded in `document.cookie`, the actual cookie jar sent to the host was no longer consistent…
CVE-2024-5702 — CVSS 7.5 (high): Memory corruption in the networking stack could have led to a potentially exploitable crash. This vulnerability affects Firefox < 125…
CVE-2024-1546 — CVSS 7.5 (high): When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds…
CVE-2024-10466 — CVSS 7.5 (high): By sending a specially crafted push message, a remote server could have hung the parent process, causing the browser to become…
CVE-2024-8900 — CVSS 7.5 (high): An attacker could write data to the user's clipboard, bypassing the user prompt, during a certain sequence of navigational events. This…
CVE-2022-22737 — CVSS 7.5 (high): Constructing audio sinks could have lead to a race condition when playing audio files and closing windows. This could have lead to a…
CVE-2022-34477 — CVSS 7.5 (high): The MediaError message property should be consistent to avoid leaking information about cross-origin resources; however for a same-site…
CVE-2022-26387 — CVSS 7.5 (high): When installing an add-on, Firefox verified the signature before prompting the user; but while the user was confirming the prompt, the…
CVE-2022-36319 — CVSS 7.5 (high): When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This…
CVE-2024-6604 — CVSS 7.5 (high): Memory safety bugs present in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12. Some of these bugs showed evidence of memory…
CVE-2023-32214 — CVSS 7.5 (high): Protocol handlers `ms-cxh` and `ms-cxh-full` could have been leveraged to trigger a denial of service. *Note: This attack only affects…
CVE-2024-9393 — CVSS 7.5 (high): An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://pdf.js` origin. This…
CVE-2024-10459 — CVSS 7.5 (high): An attacker could have caused a use-after-free when accessibility was enabled, leading to a potentially exploitable crash. This…
CVE-2023-4051 — CVSS 7.5 (high): A website could have obscured the full screen notification by using the file open dialog. This could have led to user confusion and…
CVE-2024-6603 — CVSS 7.4 (high): In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory…
CVE-2022-22753 — CVSS 7.1 (high): A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused to grant Users write access to an…
CVE-2024-5700 — CVSS 7.0 (high): Memory safety bugs present in Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11. Some of these bugs showed evidence of memory…
CVE-2022-42929 — CVSS 6.5 (medium): If a website called `window.print()` in a particular way, it could cause a denial of service of the browser, which may persist beyond…
CVE-2022-1097 — CVSS 6.5 (medium): <code>NSSToken</code> objects were referenced via direct points, and could have been accessed in an unsafe way on different threads…
CVE-2022-1196 — CVSS 6.5 (medium): After a VR Process is destroyed, a reference to it may have been retained and used, leading to a use-after-free and potentially exploitable…
CVE-2022-22739 — CVSS 6.5 (medium): Malicious websites could have tricked users into accepting launching a program to handle an external URL protocol. This vulnerability…
CVE-2022-22742 — CVSS 6.5 (medium): When inserting text while in edit mode, some characters might have lead to out-of-bounds memory access causing a potentially exploitable…
CVE-2022-22745 — CVSS 6.5 (medium): Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations. This vulnerability affects…
CVE-2022-22747 — CVSS 6.5 (medium): After accepting an untrusted certificate, handling an empty pkcs7 sequence as part of the certificate data could have lead to a crash. This…