Mozilla

Firefox

2918 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2024-3865

  • EPSS 0.28%
  • Veröffentlicht 16.04.2024 16:15:08
  • Zuletzt bearbeitet 01.05.2025 15:40:32

Memory safety bugs present in Firefox 124. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 125.

7.5

CVE-2024-31392

  • EPSS 0.48%
  • Veröffentlicht 03.04.2024 16:15:07
  • Zuletzt bearbeitet 09.04.2025 14:12:48

If an insecure element was added to a page after a delay, Firefox would not replace the secure icon with a mixed content security status This vulnerability affects Firefox for iOS < 124.

4.3

CVE-2024-31393

  • EPSS 0.14%
  • Veröffentlicht 03.04.2024 16:15:07
  • Zuletzt bearbeitet 09.04.2025 14:13:19

Dragging Javascript URLs to the address bar could cause them to be loaded, bypassing restrictions and security protections This vulnerability affects Firefox for iOS < 124.

9.8

CVE-2024-29943

  • EPSS 57.37%
  • Veröffentlicht 22.03.2024 13:15:07
  • Zuletzt bearbeitet 01.04.2025 16:56:59

An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling range-based bounds check elimination. This vulnerability affects Firefox < 124.0.1.

8.4

CVE-2024-29944

  • EPSS 1.16%
  • Veröffentlicht 22.03.2024 13:15:07
  • Zuletzt bearbeitet 01.04.2025 16:30:37

An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does not affect mobile versions of Firefox. This...

5.5

CVE-2024-2611

Exploit
  • EPSS 0.24%
  • Veröffentlicht 19.03.2024 12:15:09
  • Zuletzt bearbeitet 01.04.2025 16:26:40

A missing delay on when pointer lock was used could have allowed a malicious page to trick a user into granting permissions. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

8.1

CVE-2024-2612

  • EPSS 1.14%
  • Veröffentlicht 19.03.2024 12:15:09
  • Zuletzt bearbeitet 17.07.2025 13:35:05

If an attacker could find a way to trigger a particular code path in `SafeRefPtr`, it could have triggered a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird <...

7.5

CVE-2024-2613

  • EPSS 0.13%
  • Veröffentlicht 19.03.2024 12:15:09
  • Zuletzt bearbeitet 25.02.2025 14:51:09

Data was not properly sanitized when decoding a QUIC ACK frame; this could have led to unrestricted memory consumption and a crash. This vulnerability affects Firefox < 124.

8.8

CVE-2024-2614

  • EPSS 1.33%
  • Veröffentlicht 19.03.2024 12:15:09
  • Zuletzt bearbeitet 25.02.2025 14:47:29

Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vu...

9.8

CVE-2024-2615

  • EPSS 0.21%
  • Veröffentlicht 19.03.2024 12:15:09
  • Zuletzt bearbeitet 14.03.2025 16:15:30

Memory safety bugs present in Firefox 123. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 124.