cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-8381,https://securityvulnerability.io/vulnerability/CVE-2024-8381,Possible Type Confusion Vulnerability in Firefox,"A type confusion vulnerability has been identified in Firefox and Thunderbird that may be exploited when accessing a property name on an object within a `with` statement. This issue affects multiple versions of Firefox and Thunderbird, potentially leading to unexpected behavior or security flaws. Users of affected versions are urged to upgrade to the latest releases to mitigate any risks associated with this vulnerability.",Mozilla,"Firefox,Firefox Esr,Thunderbird",9.8,CRITICAL,0.0010900000343099236,false,,false,false,true,2025-01-30T20:31:51.000Z,true,false,false,,2024-09-03T12:32:17.682Z,599
CVE-2024-9680,https://securityvulnerability.io/vulnerability/CVE-2024-9680,Mozilla Firefox Vulnerability: Code Execution through Animation Timelines,"A vulnerability has been identified in Firefox and Thunderbird, resulting from a use-after-free scenario within the Animation timelines component. This flaw allows attackers to execute arbitrary code in the content process, which has been observed to be actively exploited in the wild. Affected users are urged to upgrade their software to mitigate risks associated with this vulnerability. The impacted versions of both Firefox and Thunderbird span multiple releases, emphasizing the importance of prompt updates for users to ensure their systems remain secure.",Mozilla,"Firefox,Firefox Esr,Thunderbird",9.8,CRITICAL,0.0036200000904500484,true,2024-10-15T00:00:00.000Z,true,true,true,2024-10-10T01:00:00.000Z,,true,true,2024-10-11T16:25:09.527Z,2024-10-09T13:15:00.000Z,15755
CVE-2024-29944,https://securityvulnerability.io/vulnerability/CVE-2024-29944,Arbitrary JavaScript Execution Vulnerability Affects Firefox < 124.0.1 and Firefox ESR < 115.9.1,"An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does not affect mobile versions of Firefox. This vulnerability affects Firefox < 124.0.1 and Firefox ESR < 115.9.1.",Mozilla,"Firefox,Firefox Esr",,,0.00044999999227002263,false,,true,false,true,2024-08-27T23:15:11.000Z,,false,false,,2024-03-22T12:55:40.451Z,0
CVE-2024-4367,https://securityvulnerability.io/vulnerability/CVE-2024-4367,Arbitrary JavaScript Execution Vulnerability in Firefox,"A vulnerability has been identified in PDF.js, specifically related to a missing type check when processing fonts. This oversight permits arbitrary JavaScript execution within the PDF.js environment. As a result, users of affected versions of Mozilla Firefox and Thunderbird could be vulnerable to potential attacks, where maliciously crafted PDF files may execute unintended scripts. The vulnerability impacts Firefox versions prior to 126, as well as Firefox ESR and Thunderbird versions earlier than 115.11. Users are urged to update to the latest versions to mitigate any risks associated with this issue.",Mozilla,"Firefox,Firefox Esr,Thunderbird",8.8,HIGH,0.0007399999885819852,false,,true,false,true,2024-05-21T14:08:23.000Z,true,true,true,2024-05-22T13:52:02.906Z,2024-05-14T17:21:23.486Z,12278
CVE-2024-29943,https://securityvulnerability.io/vulnerability/CVE-2024-29943,Out-of-bounds Read/Write Vulnerability Affects Firefox,"The vulnerability CVE-2024-29943 affects Firefox, allowing attackers to perform an out-of-bounds read or write on a JavaScript object, enabling remote code execution and sandbox escape. The flaw was exploited during the Pwn2Own Vancouver 2024 hacking competition and affected Firefox versions before 124.0.1. Mozilla has since released security updates to address this vulnerability, but it is imperative for users to promptly update their web browsers to mitigate the risk of potential remote code execution attacks.",Mozilla,Firefox,,,0.0004600000102072954,false,,true,false,true,2024-03-28T00:39:11.000Z,,false,false,,2024-03-22T12:55:39.866Z,0