Security Vulnerabilities
Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox < 145.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-11-11
Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox < 145.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-11-11
Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 145.
CVSS Score
8.1
EPSS Score
0.001
Published
2025-11-11
Insecure default permissions in the agent of Ivanti Endpoint Manager before version 2024 SU4 allows a local authenticated attacker to write arbitrary files anywhere on disk
CVSS Score
7.1
EPSS Score
0.0
Published
2025-11-11
Race condition in the Graphics component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, and Firefox ESR < 115.30.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-11-11
Mitigation bypass in the DOM: Core & HTML component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, and Firefox ESR < 115.30.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-11-11
Use-after-free in the Audio/Video component. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, and Firefox ESR < 115.30.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-11-11
Spoofing issue in Firefox. This vulnerability affects Firefox < 145, Firefox ESR < 140.5, and Firefox ESR < 115.30.
CVSS Score
3.4
EPSS Score
0.0
Published
2025-11-11
Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 145 and Firefox ESR < 140.5.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-11-11
Same-origin policy bypass in the DOM: Notifications component. This vulnerability affects Firefox < 145 and Firefox ESR < 140.5.
CVSS Score
8.1
EPSS Score
0.0
Published
2025-11-11