Vulnerabilidades en mozilla

1860 resultados
CVE-2018-12393A potential vulnerability was found in 32-bit builds where an integer overflow during the conversion of scripts to an internal UTF-16 represEPSS 3.9%CVE-2018-5177A vulnerability exists in XSLT during number formatting where a negative buffer size may be allocated in some instances, leading to a bufferEPSS 3.9%CVE-2021-38503The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scriptsEPSS 3.8%CVE-2018-12362An integer overflow can occur during graphics operations done by the Supplemental Streaming SIMD Extensions 3 (SSSE3) scaler, resulting in aEPSS 3.8%CVE-2018-5156A vulnerability can occur when capturing a media stream when the media source type is changed as the capture is occurring. This can result iEPSS 3.8%CVE-2017-5398Memory safety bugs were reported in Thunderbird 45.7. Some of these bugs showed evidence of memory corruption and we presume that with enougEPSS 3.8%CVE-2017-5433A use-after-free vulnerability in SMIL animation functions occurs when pointers to animation elements in an array are dropped from the animaEPSS 3.7%CVE-2017-5434A use-after-free vulnerability occurs when redirecting focus handling which results in a potentially exploitable crash. This vulnerability aEPSS 3.7%CVE-2017-5438A use-after-free vulnerability during XSLT processing due to the result handler being held by a freed handler during handling. This results EPSS 3.7%CVE-2016-5297An error in argument length checking in JavaScript, leading to potential integer overflows or other bounds checking issues. This vulnerabiliEPSS 3.6%CVE-2017-7824A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incEPSS 3.6%CVE-2017-5400JIT-spray targeting asm.js combined with a heap spray allows for a bypass of ASLR and DEP protections leading to potential memory corruptionEPSS 3.6%CVE-2017-5439A use-after-free vulnerability during XSLT processing due to poor handling of template parameters. This results in a potentially exploitableEPSS 3.6%CVE-2017-5455The internal feed reader APIs that crossed the sandbox barrier allowed for a sandbox escape and escalation of privilege if combined with anoEPSS 3.6%CVE-2016-9898Use-after-free resulting in potentially exploitable crash when manipulating DOM subtrees in the Editor. This vulnerability affects Firefox <EPSS 3.6%CVE-2019-17006In Network Security Services (NSS) before 3.46, several cryptographic primitives had missing length checks. In cases where the application cEPSS 3.6%CVE-2016-5296A heap-buffer-overflow in Cairo when processing SVG content caused by compiler optimization, resulting in a potentially exploitable crash. TEPSS 3.5%CVE-2018-5155A use-after-free vulnerability can occur while adjusting layout during SVG animations with text paths. This results in a potentially exploitEPSS 3.5%CVE-2018-18501Mozilla developers and community members reported memory safety bugs present in Firefox 64 and Firefox ESR 60.4. Some of these bugs showed eEPSS 3.5%CVE-2017-5429Memory safety bugs were reported in Firefox 52, Firefox ESR 45.8, Firefox ESR 52, and Thunderbird 52. Some of these bugs showed evidence of EPSS 3.5%