CVE-2024-7519
- EPSS 0.59%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 12.08.2024 16:04:20
Insufficient checks when processing graphics shared memory could have led to memory corruption. This could be leveraged by an attacker to perform a sandbox escape. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, T...
CVE-2024-7520
- EPSS 0.6%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 24.03.2025 17:15:19
A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. This vulnerability affects Firefox < 129, Firefox ESR < 128.1, and Thunderbird < 128.1.
CVE-2024-7521
- EPSS 0.58%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 12.08.2024 16:05:10
Incomplete WebAssembly exception handing could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.
CVE-2024-7522
- EPSS 0.6%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 12.08.2024 16:06:05
Editor code failed to check an attribute value. This could have led to an out-of-bounds read. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.
CVE-2024-7525
- EPSS 0.56%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 12.08.2024 16:07:19
It was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response body of requests on any site. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 12...
CVE-2024-7526
- EPSS 0.55%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 17.09.2024 19:15:28
ANGLE failed to initialize parameters which lead to reading from uninitialized memory. This could be leveraged to leak sensitive data from memory. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128....
CVE-2024-7527
- EPSS 0.57%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 18.03.2025 19:15:47
Unexpected marking work at the start of sweeping could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.
CVE-2024-7528
- EPSS 0.49%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 12.08.2024 16:10:00
Incorrect garbage collection interaction in IndexedDB could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 128.1, and Thunderbird < 128.1.
CVE-2024-7529
- EPSS 0.49%
- Veröffentlicht 06.08.2024 13:15:57
- Zuletzt bearbeitet 12.08.2024 16:09:09
The date picker could partially obscure security prompts. This could be used by a malicious site to trick a user into granting permissions. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and ...
CVE-2024-7518
- EPSS 0.48%
- Veröffentlicht 06.08.2024 13:15:56
- Zuletzt bearbeitet 29.10.2024 20:35:43
Select options could obscure the fullscreen notification dialog. This could be used by a malicious site to perform a spoofing attack. This vulnerability affects Firefox < 129, Firefox ESR < 128.1, and Thunderbird < 128.1.