CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 0CVE-2024-0751 – Mozilla: Privilege escalation through devtools
https://notcve.org/view.php?id=CVE-2024-0751
23 Jan 2024 — This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7. ... Esta vulnerabilidad afecta a Firefox < 122, Firefox ESR < 115.7 y Thunderbird < 115.7. ... Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, phishing, clickjacking, privilege escalation, HSTS bypass or bypass of content security policies. • https://bugzilla.mozilla.org/show_bug.cgi?id=1865689 • CWE-20: Improper Input Validation CWE-269: Improper Privilege Management •
CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 0CVE-2024-0750 – Mozilla: Potential permissions request bypass via clickjacking
https://notcve.org/view.php?id=CVE-2024-0750
23 Jan 2024 — This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7. ... Esta vulnerabilidad afecta a Firefox < 122, Firefox ESR < 115.7 y Thunderbird < 115.7. ... Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, phishing, clickjacking, privilege escalation, HSTS bypass or bypass of content security policies. • https://bugzilla.mozilla.org/show_bug.cgi?id=1863083 • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-6873 – Ubuntu Security Notice USN-6562-1
https://notcve.org/view.php?id=CVE-2023-6873
19 Dec 2023 — Memory safety bugs present in Firefox 120. ... This vulnerability affects Firefox < 121. Errores de seguridad de la memoria presentes en Firefox 120. ... Esta vulnerabilidad afecta a Firefox < 121. Multiple security issues were discovered in Firefox. • https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855327%2C1862089%2C1862723 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-6866 – Gentoo Linux Security Advisory 202401-10
https://notcve.org/view.php?id=CVE-2023-6866
19 Dec 2023 — This vulnerability affects Firefox < 121. ... Esta vulnerabilidad afecta a Firefox < 121. Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could lead to remote code execution. • https://bugzilla.mozilla.org/show_bug.cgi?id=1849037 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2023-6864 – Mozilla: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6
https://notcve.org/view.php?id=CVE-2023-6864
19 Dec 2023 — Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. ... This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. Errores de seguridad de la memoria presentes en Firefox 120, Firefox ESR 115.5 y Thunderbird 115.5. ... Esta vulnerabilidad afecta a Firefox ESR <115.6, Thunderbird <115.6 y Firefox <121. ... USN-6562-1 fixed vulnerabilities in Firefox. • https://bugzilla.mozilla.org/buglist.cgi?bug_id=1736385%2C1810805%2C1846328%2C1856090%2C1858033%2C1858509%2C1862089%2C1862777%2C1864015 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2023-6863 – Mozilla: Undefined behavior in <code>ShutdownObserver()</code>
https://notcve.org/view.php?id=CVE-2023-6863
19 Dec 2023 — This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. ... Esta vulnerabilidad afecta a Firefox ESR <115.6, Thunderbird <115.6 y Firefox <121. • https://bugzilla.mozilla.org/show_bug.cgi?id=1868901 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 1%CPEs: 5EXPL: 0CVE-2023-6862 – Mozilla: Use-after-free in <code>nsDNSService</code>
https://notcve.org/view.php?id=CVE-2023-6862
19 Dec 2023 — This vulnerability affects Firefox ESR < 115.6 and Thunderbird < 115.6. ... Esta vulnerabilidad afecta a Firefox ESR <115.6 y Thunderbird <115.6. • https://bugzilla.mozilla.org/show_bug.cgi?id=1868042 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2023-6861 – Mozilla: Heap buffer overflow affected <code>nsWindow::PickerOpen(void)</code> in headless mode
https://notcve.org/view.php?id=CVE-2023-6861
19 Dec 2023 — This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. ... Esta vulnerabilidad afecta a Firefox ESR <115.6, Thunderbird <115.6 y Firefox <121. ... USN-6562-1 fixed vulnerabilities in Firefox. ... Multiple security issues were discovered in Firefox. ... Andrew Osmond discovered that Firefox did not properly validate the textures produced by remote decoders. • https://bugzilla.mozilla.org/show_bug.cgi?id=1864118 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2023-6859 – Mozilla: Use-after-free in PR_GetIdentitiesLayer
https://notcve.org/view.php?id=CVE-2023-6859
19 Dec 2023 — This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. ... Esta vulnerabilidad afecta a Firefox ESR <115.6, Thunderbird <115.6 y Firefox <121. • https://bugzilla.mozilla.org/show_bug.cgi?id=1840144 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2023-6858 – Mozilla: Heap buffer overflow in <code>nsTextFragment</code>
https://notcve.org/view.php?id=CVE-2023-6858
19 Dec 2023 — Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM handling. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. Firefox era susceptible a un desbordamiento de búfer en `nsTextFragment` debido a un manejo insuficiente de OOM. Esta vulnerabilidad afecta a Firefox ESR <115.6, Thunderbird <115.6 y Firefox <121. The Mozilla Foundation Security Advisory describes this flaw as: Fire... • https://bugzilla.mozilla.org/show_bug.cgi?id=1826791 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •