| CVE-2019-11701 |
Low |
Yes |
Cross-site scripting |
The default webcal: protocol handler in Firefox before 67.0 will load a web site vulnerable to cross-site scripting (XSS) attacks. This default was left in... |
| CVE-2019-11699 |
Low |
Yes |
Content spoofing |
A malicious page can briefly cause the wrong name to be highlighted as the domain name in the addressbar during page navigations in Firefox before 67.0.... |
| CVE-2019-11698 |
Medium |
Yes |
Information disclosure |
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar in Firefox before 67.0 or Thunderbird before 60.7.0, and the resulting bookmark... |
| CVE-2019-11697 |
Medium |
Yes |
Access restriction bypass |
In Firefox before 67.0, if the ALT and "a" keys are pressed when users receive an extension installation prompt, the extension will be installed without the... |
| CVE-2019-11696 |
Medium |
Yes |
Content spoofing |
In Firefox before 67.0, files with the .JNLP extension used for "Java web start" applications are not treated as executable content for download prompts... |
| CVE-2019-11695 |
Medium |
Yes |
Content spoofing |
In Firefox before 67.0, a custom cursor defined by scripting on a site can position itself over the addressbar to spoof the actual cursor when it should not... |
| CVE-2019-11693 |
Critical |
Yes |
Arbitrary code execution |
The bufferdata function in WebGL in Firefox before 67.0 and Thunderbird before 60.7.0 is vulnerable to a buffer overflow with specific graphics drivers on... |
| CVE-2019-11692 |
Critical |
Yes |
Arbitrary code execution |
A use-after-free vulnerability can occur in Firefox before 67.0 and Thunderbird before 60.7.0, when listeners are removed from the event listener manager... |
| CVE-2019-11691 |
Critical |
Yes |
Arbitrary code execution |
A use-after-free vulnerability can occur in Firefox before 67.0 and Thunderbird before 60.7.0, when working with XMLHttpRequest (XHR) in an event loop,... |
| CVE-2019-9821 |
Critical |
Yes |
Arbitrary code execution |
A use-after-free vulnerability can occur in AssertWorkerThread in Firefox before 67.0, due to a race condition with shared workers. This results in a... |
| CVE-2019-9820 |
Critical |
Yes |
Arbitrary code execution |
A use-after-free vulnerability can occur in the chrome event handler of Firefox before 67.0 when it is freed while still in use. This results in a... |
| CVE-2019-9819 |
Critical |
Yes |
Arbitrary code execution |
A vulnerability where a JavaScript compartment mismatch can occur in Firefox before 67.0 and Thunderbird before 60.7.0, while working with the fetch API,... |
| CVE-2019-9817 |
High |
Yes |
Same-origin policy bypass |
In Firefox before 67.0 and Thunderbird before 60.7.0, images from a different domain can be read using a canvas object in some circumstances. This could be... |
| CVE-2019-9816 |
High |
Yes |
Access restriction bypass |
A possible vulnerability exists in Firefox before 67.0 and Thunderbird before 60.7.0, where type confusion can occur when manipulating JavaScript objects in... |
| CVE-2019-9814 |
Critical |
Yes |
Arbitrary code execution |
Several memory safety bugs have been found in Firefox before 67.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with... |
| CVE-2019-9800 |
Critical |
Yes |
Arbitrary code execution |
Several memory safety bugs have been found in Firefox before 67.0 and Thunderbird before 60.7.0. Some of these bugs showed evidence of memory corruption and... |
| CVE-2019-7317 |
Low |
No |
Denial of service |
png_image_free in png.c in libpng 1.6.36 has a use-after-free because png_image_free_function is called under png_safe_execute. |