MozillaFirefox (SUSE:Linux Enterprise Module for Desktop Applications 15 SP2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Desktop Applications 15 SP2 package MozillaFirefox, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (121)
CVE-2021-38503 — CVSS 10.0 (critical): The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing…
CVE-2021-32810 — CVSS 9.8 (critical): crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and…
CVE-2020-15683 — CVSS 9.8 (critical): Mozilla developers and community members reported memory safety bugs present in Firefox 81 and Firefox ESR 78.3. Some of these bugs showed…
CVE-2020-12417 — CVSS 8.8 (high): Due to confusion about ValueTags on JavaScript Objects, an object may pass through the type barrier, resulting in memory corruption and a…
CVE-2020-12419 — CVSS 8.8 (high): When processing callbacks that occurred during window flushing in the parent process, the associated window may die; causing a…
CVE-2020-12420 — CVSS 8.8 (high): When trying to connect to a STUN server, a race condition could have caused a use-after-free of a pointer, leading to memory corruption and…
CVE-2020-12422 — CVSS 8.8 (high): In non-standard configurations, a JPEG image created by JavaScript could have caused an internal variable to overflow, resulting in an out…
CVE-2020-15678 — CVSS 8.8 (high): When recursing through graphical layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free. This…
CVE-2020-12406 — CVSS 8.8 (high): Mozilla Developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with…
CVE-2020-12410 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory…
CVE-2020-12416 — CVSS 8.8 (high): A VideoStreamEncoder may have been freed in a race condition with VideoBroadcaster::AddOrUpdateSink, resulting in a use-after-free, memory…
CVE-2020-12426 — CVSS 8.8 (high): Mozilla developers and community members reported memory safety bugs present in Firefox 77. Some of these bugs showed evidence of memory…
CVE-2020-15656 — CVSS 8.8 (high): JIT optimizations involving the Javascript arguments object could confuse later optimizations. This risk was already mitigated by various…
CVE-2020-15659 — CVSS 8.8 (high): Mozilla developers and community members reported memory safety bugs present in Firefox 78 and Firefox ESR 78.0. Some of these bugs showed…
CVE-2020-15663 — CVSS 8.8 (high): If Firefox is installed to a user-writable directory, the Mozilla Maintenance Service would execute updater.exe from the install location…
CVE-2020-15670 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox for Android 79. Some of these bugs showed evidence of memory corruption…
CVE-2020-15673 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 80 and Firefox ESR 78.2. Some of these bugs showed evidence of memory…
CVE-2020-15969 — CVSS 8.8 (high): Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a…
CVE-2020-16044 — CVSS 8.8 (high): Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a…
CVE-2020-26950 — CVSS 8.8 (high): In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable use-after-free…
CVE-2020-26959 — CVSS 8.8 (high): During browser shutdown, reference decrementing could have occured on a previously freed object, resulting in a use-after-free, memory…
CVE-2020-26960 — CVSS 8.8 (high): If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a…
CVE-2020-26968 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these bugs showed evidence of memory…
CVE-2020-26971 — CVSS 8.8 (high): Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow on some video drivers. This…
CVE-2020-26973 — CVSS 8.8 (high): Certain input to the CSS Sanitizer confused it, resulting in incorrect components being removed. This could have been used as a sanitizer…
CVE-2020-26974 — CVSS 8.8 (high): When flex-basis was used on a table wrapper, a StyleGenericFlexBasis object could have been incorrectly cast to the wrong type. This…
CVE-2020-35112 — CVSS 8.8 (high): If a user downloaded a file lacking an extension on Windows, and then "Open"-ed it from the downloads panel, if there was an executable…
CVE-2020-35113 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 83 and Firefox ESR 78.5. Some of these bugs showed evidence of memory…
CVE-2020-6463 — CVSS 8.8 (high): Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a…
CVE-2021-23954 — CVSS 8.8 (high): Using the new logical assignment operators in a JavaScript switch statement could have caused a type confusion, leading to a memory…
CVE-2021-23960 — CVSS 8.8 (high): Performing garbage collection on re-declared JavaScript variables resulted in a user-after-poison, and a potentially exploitable crash…
CVE-2021-23964 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 84 and Firefox ESR 78.6. Some of these bugs showed evidence of memory…
CVE-2021-23978 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 85 and Firefox ESR 78.7. Some of these bugs showed evidence of memory…
CVE-2021-23987 — CVSS 8.8 (high): Mozilla developers and community members reported memory safety bugs present in Firefox 86 and Firefox ESR 78.8. Some of these bugs showed…
CVE-2021-23994 — CVSS 8.8 (high): A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects…
CVE-2021-23995 — CVSS 8.8 (high): When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this…
CVE-2021-23999 — CVSS 8.8 (high): If a Blob URL was loaded through some unusual user interaction, it could have been loaded by the System Principal and granted additional…
CVE-2021-24002 — CVSS 8.8 (high): When a user clicked on an FTP URL containing encoded newline characters (%0A and %0D), the newlines would have been interpreted as such and…
CVE-2021-29946 — CVSS 8.8 (high): Ports that were written as an integer overflow above the bounds of a 16-bit integer could have bypassed port blocking restrictions when…
CVE-2021-29967 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 88 and Firefox ESR 78.11. Some of these bugs showed evidence of memory…
CVE-2021-29970 — CVSS 8.8 (high): A malicious webpage could have triggered a use-after-free, memory corruption, and a potentially exploitable crash. *This bug could only be…
CVE-2021-29976 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence…
CVE-2021-29980 — CVSS 8.8 (high): Uninitialized memory in a canvas object could have caused an incorrect free() leading to memory corruption and a potentially exploitable…
CVE-2021-29981 — CVSS 8.8 (high): An issue present in lowering/register allocation could have led to obscure but deterministic register confusion failures in JITted code…
CVE-2021-29984 — CVSS 8.8 (high): Instruction reordering resulted in a sequence of instructions that would cause an object to be incorrectly considered during garbage…
CVE-2021-29985 — CVSS 8.8 (high): A use-after-free vulnerability in media channels could have led to memory corruption and a potentially exploitable crash. This…
CVE-2021-29988 — CVSS 8.8 (high): Firefox incorrectly treated an inline list-item element as a block element, resulting in an out of bounds read or memory corruption, and a…
CVE-2021-29989 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 90 and Firefox ESR 78.12. Some of these bugs showed evidence of memory…
CVE-2021-29990 — CVSS 8.8 (high): Mozilla developers and community members reported memory safety bugs present in Firefox 90. Some of these bugs showed evidence of memory…
CVE-2021-30547 — CVSS 8.8 (high): Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory…
CVE-2021-38495 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Thunderbird 78.13.0. Some of these bugs showed evidence of memory corruption and…
CVE-2021-38496 — CVSS 8.8 (high): During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a…
CVE-2021-38500 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 92 and Firefox ESR 91.1. Some of these bugs showed evidence of memory…
CVE-2021-38501 — CVSS 8.8 (high): Mozilla developers reported memory safety bugs present in Firefox 92 and Firefox ESR 91.1. Some of these bugs showed evidence of memory…
CVE-2021-38504 — CVSS 8.8 (high): When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use-after-free could have resulted, leading to…
CVE-2021-38510 — CVSS 8.8 (high): The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's…
CVE-2021-43537 — CVSS 8.8 (high): An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially…
CVE-2021-43539 — CVSS 8.8 (high): Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the call not tracing…
CVE-2021-29991 — CVSS 8.1 (high): Firefox incorrectly accepted a newline in a HTTP/3 header, interpretting it as two separate headers. This allowed for a header splitting…
CVE-2021-29986 — CVSS 8.1 (high): A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. *Note: This issue only…
CVE-2021-23981 — CVSS 8.1 (high): A texture upload of a Pixel Buffer Object could have confused the WebGL code to skip binding the buffer used to unpack it, resulting in…
CVE-2020-12423 — CVSS 7.8 (high): When the Windows DLL "webauthn.dll" was missing from the Operating System, and a malicious one was placed in a folder in the user's %PATH%…
CVE-2020-15657 — CVSS 7.8 (high): Firefox could be made to load attacker-supplied DLL files from the installation directory. This required an attacker that is already…
CVE-2021-38498 — CVSS 7.5 (high): During process shutdown, a document could have caused a use-after-free of a languages service object, leading to memory corruption and a…
CVE-2021-23961 — CVSS 7.4 (high): Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's…
CVE-2021-29964 — CVSS 7.1 (high): A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would process incorrectly, leading to an out-of-bounds…
CVE-2021-23998 — CVSS 6.5 (medium): Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page. This…
CVE-2020-12424 — CVSS 6.5 (medium): When constructing a permission prompt for WebRTC, a URI was supplied from the content process. This URI was untrusted, and could have been…
CVE-2020-12425 — CVSS 6.5 (medium): Due to confusion processing a hyphen character in Date.parse(), a one-byte out of bounds read could have occurred, leading to potential…
CVE-2020-15652 — CVSS 6.5 (medium): By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This…
CVE-2020-15653 — CVSS 6.5 (medium): An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues…
CVE-2020-15654 — CVSS 6.5 (medium): When in an endless loop, a website specifying a custom cursor using CSS could make it look like the user is interacting with the user…
CVE-2020-15655 — CVSS 6.5 (medium): A redirected HTTP request which is observed or modified through a web extension could bypass existing CORS checks, leading to potential…
CVE-2021-38497 — CVSS 6.5 (medium): Through use of reportValidity() and window.open(), a plain-text validation message could have been overlaid on another origin, leading to…
CVE-2020-26961 — CVSS 6.5 (medium): When DNS over HTTPS is in use, it intentionally filters RFC1918 and related IP ranges from the responses as these do not make sense coming…
CVE-2021-23973 — CVSS 6.5 (medium): When trying to load a cross-origin resource in an audio/video context a decoding error may have resulted, and the content of that error may…
CVE-2021-43536 — CVSS 6.5 (medium): Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL. This vulnerability…
CVE-2021-23982 — CVSS 6.5 (medium): Using techniques that built on the slipstream research, a malicious webpage could have scanned both an internal network's hosts as well as…
CVE-2021-23984 — CVSS 6.5 (medium): A malicious extension could have opened a popup window lacking an address bar. The title of the popup lacking an address bar should not be…
CVE-2020-12415 — CVSS 6.5 (medium): When "%2F" was present in a manifest URL, Firefox's AppCache behavior may have become confused and allowed a manifest to be served from a…
CVE-2021-38492 — CVSS 6.5 (medium): When delegating navigations to the operating system, Firefox would accept the `mk` scheme which might allow attackers to launch pages and…
CVE-2021-43545 — CVSS 6.5 (medium): Using the Location API in a loop could have caused severe application hangs and crashes. This vulnerability affects Thunderbird < 91.4.0…
CVE-2020-15658 — CVSS 6.5 (medium): The code for downloading files did not properly take care of special characters, which led to an attacker being able to cut off the file…
CVE-2021-29945 — CVSS 6.5 (medium): The WebAssembly JIT could miscalculate the size of a return type, which could lead to a null read and result in a crash. *Note: This issue…
CVE-2020-15664 — CVSS 6.5 (medium): By holding a reference to the eval() function from an about:blank window, a malicious webpage could have gained access to the…
CVE-2021-29951 — CVSS 6.5 (medium): The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain network, grants normal remote users access…
CVE-2020-12421 — CVSS 6.5 (medium): When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected (even if they were legitimately added by…
CVE-2020-12418 — CVSS 6.5 (medium): Manipulating individual parts of a URL object could have caused an out-of-bounds read, leaking process memory to malicious JavaScript. This…
CVE-2020-16042 — CVSS 6.5 (medium): Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to obtain potentially sensitive information from…
CVE-2021-43541 — CVSS 6.5 (medium): When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. This…
CVE-2021-43542 — CVSS 6.5 (medium): Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols…
CVE-2021-38505 — CVSS 6.5 (medium): Microsoft introduced a new feature in Windows 10 known as Cloud Clipboard which, if enabled, will record data copied to the clipboard to…
CVE-2020-26965 — CVSS 6.5 (medium): Some websites have a feature "Show Password" where clicking a button will change a password field into a textbook field, revealing the…
CVE-2020-26966 — CVSS 6.5 (medium): Searching for a single word from the address bar caused an mDNS request to be sent on the local network searching for a hostname consisting…
CVE-2021-29982 — CVSS 6.5 (medium): Due to incorrect JIT optimization, we incorrectly interpreted data from the wrong type of object, resulting in the potential leak of a…
CVE-2021-29983 — CVSS 6.5 (medium): Firefox for Android could get stuck in fullscreen mode and not exit it even after normal interactions that should cause it to exit. *Note…
CVE-2021-38507 — CVSS 6.5 (medium): The Opportunistic Encryption feature of HTTP2 (RFC 8164) allows a connection to be transparently upgraded to TLS while retaining the visual…
CVE-2020-26976 — CVSS 6.5 (medium): When a HTTPS pages was embedded in a HTTP page, and there was a service worker registered for the former, the service worker could have…
CVE-2021-29987 — CVSS 6.5 (medium): After requesting multiple permissions, and closing the first permission panel, subsequent permission panels will be displayed in a…
CVE-2020-6514 — CVSS 6.5 (medium): Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to…
CVE-2020-26951 — CVSS 6.1 (medium): A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker…
CVE-2020-26956 — CVSS 6.1 (medium): In some cases, removing HTML elements during sanitization would keep existing SVG event handlers and therefore lead to XSS. This…
CVE-2020-26958 — CVSS 6.1 (medium): Firefox did not block execution of scripts with incorrect MIME types when the response was intercepted and cached through a ServiceWorker…
CVE-2020-15676 — CVSS 6.1 (medium): Firefox sometimes ran the onload handler for SVG elements that the DOM sanitizer decided to remove, resulting in JavaScript being executed…
CVE-2020-15677 — CVSS 6.1 (medium): By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the site displayed in the download file dialog to…
CVE-2020-26978 — CVSS 6.1 (medium): Using techniques that built on the slipstream research, a malicious webpage could have exposed both an internal network's hosts as well as…
CVE-2021-43543 — CVSS 6.1 (medium): Documents loaded with the CSP sandbox directive could have escaped the sandbox's script restriction by embedding additional content. This…
CVE-2020-12405 — CVSS 5.3 (medium): When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash. This…
CVE-2020-12402 — CVSS 4.4 (medium): During RSA key generation, bignum implementations used a variation of the Binary Extended Euclidean Algorithm which entailed significantly…
CVE-2020-35111 — CVSS 4.3 (medium): When an extension with the proxy permission registered to receive <all_urls>, the proxy.onRequest callback was not triggered for…
CVE-2020-26953 — CVSS 4.3 (medium): It was possible to cause the browser to enter fullscreen mode without displaying the security UI; thus making it possible to attempt a…
CVE-2021-38508 — CVSS 4.3 (medium): By displaying a form validity message in the correct location at the same time as a permission prompt (such as for geolocation), the…
CVE-2021-43546 — CVSS 4.3 (medium): It was possible to recreate previous cursor spoofing attacks against users with a zoomed native cursor. This vulnerability affects…
CVE-2021-43538 — CVSS 4.3 (medium): By misusing a race in our notification code, an attacker could have forcefully hidden the notification for pages that had received full…
CVE-2020-16012 — CVSS 4.3 (medium): Side-channel information leakage in graphics in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to leak cross-origin data via…
CVE-2021-38506 — CVSS 4.3 (medium): Through a series of navigations, Firefox could have entered fullscreen mode without notification or warning to the user. This could lead to…
CVE-2021-23969 — CVSS 4.3 (medium): As specified in the W3C Content Security Policy draft, when creating a violation report, "User agents need to ensure that the source file…
CVE-2021-38509 — CVSS 4.3 (medium): Due to an unusual sequence of attacker-controlled events, a Javascript alert() dialog with arbitrary (although unstyled) contents could be…
CVE-2021-23953 — CVSS 4.3 (medium): If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said…
CVE-2021-23968 — CVSS 4.3 (medium): If Content Security Policy blocked frame navigation, the full destination of a redirect served in the frame was reported in the violation…