Mozilla

Firefox

3102 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-29551

  • EPSS 0.28%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 08.01.2025 22:15:27

Memory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox for Android < ...

4.3

CVE-2023-32205

  • EPSS 0.21%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 21.11.2024 08:02:53

In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.1...

6.5

CVE-2023-32206

  • EPSS 0.16%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 21.11.2024 08:02:54

An out-of-bound read could have led to a crash in the RLBox Expat driver. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.

8.8

CVE-2023-32207

  • EPSS 0.28%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 31.01.2025 16:15:29

A missing delay in popup notifications could have made it possible for an attacker to trick a user into granting permissions. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.

6.5

CVE-2023-32211

  • EPSS 0.16%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 21.11.2024 08:02:54

A type checking bug would have led to invalid code being compiled. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.

4.3

CVE-2023-32212

  • EPSS 0.21%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 27.05.2025 17:15:24

An attacker could have positioned a `datalist` element to obscure the address bar. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.

8.8

CVE-2023-32213

  • EPSS 0.26%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 21.11.2024 08:02:54

When reading a file, an uninitialized value could have been used as read limit. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.

8.8

CVE-2023-32215

  • EPSS 0.28%
  • Veröffentlicht 02.06.2023 17:15:13
  • Zuletzt bearbeitet 27.05.2025 17:15:24

Mozilla developers and community members Gabriele Svelto, Andrew Osmond, Emily McDonough, Sebastian Hengst, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 112 and Firefox ESR 102.10. Some of these bugs sh...

4.3

CVE-2023-28159

  • EPSS 0.17%
  • Veröffentlicht 02.06.2023 17:15:12
  • Zuletzt bearbeitet 09.01.2025 17:15:09

The fullscreen notification could have been hidden on Firefox for Android by using download popups, resulting in potential user confusion or spoofing attacks. <br>*This bug only affects Firefox for Android. Other operating systems are unaffected.*. T...

6.5

CVE-2023-28160

  • EPSS 0.24%
  • Veröffentlicht 02.06.2023 17:15:12
  • Zuletzt bearbeitet 09.01.2025 16:15:33

When following a redirect to a publicly accessible web extension file, the URL may have been translated to the actual local path, leaking potentially sensitive information. This vulnerability affects Firefox < 111.