This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:mozilla:firefox_esr:24.0.2
Detail
VendorMozillaFirst view 2012-05-01
ProductFirefox EsrLast view2019-09-27
Version24.0.2TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:mozilla:firefox_esr

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.62019-09-27CVE-2019-11753LocalLowNone Requ...
9.32019-09-27CVE-2019-11752NetworkMediumNone Requ...
6.82019-09-27CVE-2019-11751NetworkMediumNone Requ...
4.32019-09-27CVE-2019-11750NetworkMediumNone Requ...
4.32019-09-27CVE-2019-11749NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32019-09-27CVE-2019-11748NetworkMediumNone Requ...
4.32019-09-27CVE-2019-11747NetworkMediumNone Requ...
6.82019-09-27CVE-2019-11746NetworkMediumNone Requ...
4.32019-09-27CVE-2019-11744NetworkMediumNone Requ...
4.32019-09-27CVE-2019-11743NetworkMediumNone Requ...
4.32019-09-27CVE-2019-11742NetworkMediumNone Requ...
7.52019-09-27CVE-2019-11740NetworkLowNone Requ...
6.82019-09-27CVE-2019-11738NetworkMediumNone Requ...
4.42019-09-27CVE-2019-11736LocalMediumNone Requ...
7.52019-09-27CVE-2019-11735NetworkLowNone Requ...
52019-09-27CVE-2019-11733NetworkLowNone Requ...
7.52019-07-23CVE-2019-9820NetworkLowNone Requ...
7.52019-07-23CVE-2019-9819NetworkLowNone Requ...
52019-07-23CVE-2019-9817NetworkLowNone Requ...
4.32019-07-23CVE-2019-9816NetworkMediumNone Requ...
6.82019-07-23CVE-2019-9815NetworkMediumNone Requ...
5.12019-07-23CVE-2019-9811NetworkHighNone Requ...
7.52019-07-23CVE-2019-9800NetworkLowNone Requ...
4.32019-07-23CVE-2019-11730NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
%idName
23% (64)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
21% (60)CWE-416Use After Free
12% (34)CWE-20Improper Input Validation
6% (18)CWE-200Information Exposure
4% (13)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 20 More...
%idName
3% (9)CWE-787Out-of-bounds Write
2% (8)CWE-399Resource Management Errors
2% (8)CWE-190Integer Overflow or Wraparound
2% (8)CWE-125Out-of-bounds Read
2% (6)CWE-704Incorrect Type Conversion or Cast
2% (6)CWE-94Failure to Control Generation of Code ('Code Injection')
1% (5)CWE-346Origin Validation Error
1% (5)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
1% (4)CWE-269Improper Privilege Management
1% (3)CWE-732Incorrect Permission Assignment for Critical Resource
1% (3)CWE-254Security Features
0% (2)CWE-362Race Condition
0% (2)CWE-352Cross-Site Request Forgery (CSRF)
0% (2)CWE-310Cryptographic Issues
0% (2)CWE-276Incorrect Default Permissions
0% (1)CWE-682Incorrect Calculation
0% (1)CWE-665Improper Initialization
0% (1)CWE-610Externally Controlled Reference to a Resource in Another Sphere
0% (1)CWE-522Insufficiently Protected Credentials
0% (1)CWE-426Untrusted Search Path

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:23744The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ESR 24....
oval:org.mitre.oval:def:24571TypedArrayObject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before ...
oval:org.mitre.oval:def:18495Use-after-free vulnerability in the nsEventListenerManager::SetEventHandler f...
oval:org.mitre.oval:def:18694The JavaScript engine in Mozilla Firefox before 25.0, Firefox ESR 17.x before...
oval:org.mitre.oval:def:24710Cross-site scripting (XSS) using history navigations
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:20678Use-after-free vulnerability in the nsEventListenerManager::HandleEventSubTyp...
oval:org.mitre.oval:def:21104RHSA-2013:1791: nss and nspr security, bug fix, and enhancement update (Impor...
oval:org.mitre.oval:def:21069DSA-2820-1 nspr - integer overflow
oval:org.mitre.oval:def:20606RHSA-2013:1829: nss, nspr, and nss-util security update (Important)
oval:org.mitre.oval:def:19958USN-2031-1 -- firefox vulnerabilities
oval:org.mitre.oval:def:19893USN-2032-1 -- thunderbird vulnerabilities
oval:org.mitre.oval:def:19778Avoid unsigned integer wrapping in PL_ArenaAllocate
oval:org.mitre.oval:def:22452USN-2087-1 -- nspr vulnerability
oval:org.mitre.oval:def:24183ELSA-2013:1829: nss, nspr, and nss-util security update (Important)
oval:org.mitre.oval:def:23177ELSA-2013:1791: nss and nspr security, bug fix, and enhancement update (Impor...
oval:org.mitre.oval:def:27325DEPRECATED: ELSA-2013-1791 -- nss and nspr security, bug fix, and enhancement...
oval:org.mitre.oval:def:27219DEPRECATED: ELSA-2013-1829 -- nss, nspr, and nss-util security update (import...
oval:org.mitre.oval:def:24017The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x b...
oval:org.mitre.oval:def:19133PDF.js in Mozilla Firefox before 25.0 and Firefox ESR 24.x before 24.1 does n...
oval:org.mitre.oval:def:21015Use-after-free vulnerability in the PresShell::DispatchSynthMouseMove functio...
oval:org.mitre.oval:def:26643DSA-3018-1 iceweasel - security update
oval:org.mitre.oval:def:26573RHSA-2014:1144: firefox security update (Critical)
oval:org.mitre.oval:def:26530USN-2329-1 -- firefox vulnerabilities
oval:org.mitre.oval:def:26526RHSA-2014:1145: thunderbird security update (Important)
oval:org.mitre.oval:def:26841USN-2330-1 -- thunderbird vulnerabilities

OpenVAS Exploits

idDescription
2012-05-31Name : FreeBSD Ports: chromium
File : nvt/freebsd_chromium13.nasl
2012-05-07Name : Google Chrome Multiple Denial of Service Vulnerabilities - May 12 (Linux)
File : nvt/gb_google_chrome_mult_dos_vuln_may12_lin.nasl
2012-05-07Name : Google Chrome Multiple Denial of Service Vulnerabilities - May 12 (Mac OS X)
File : nvt/gb_google_chrome_mult_dos_vuln_may12_macosx.nasl
2012-05-07Name : Google Chrome Multiple Denial of Service Vulnerabilities - May 12 (Windows)
File : nvt/gb_google_chrome_mult_dos_vuln_may12_win.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-A-0113Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0053309
2014-A-0082Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0052487
2014-A-0064Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0050011
2014-A-0043Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0046769
2014-A-0021Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0043921
Hide | Show 3 More...
idDescription
2013-A-0233Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0042596
2013-A-0220Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0042380
2013-A-0203Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0041365

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2019-10-08Mozilla Firefox Custom Elements write-after-free attempt
RuleID : 51440 - Type : BROWSER-FIREFOX - Revision : 1
2019-10-08Mozilla Firefox Custom Elements write-after-free attempt
RuleID : 51439 - Type : BROWSER-FIREFOX - Revision : 1
2019-08-13Mozilla Firefox RemotePrompt sandbox escape attempt
RuleID : 50697 - Type : BROWSER-FIREFOX - Revision : 1
2019-08-13Mozilla Firefox RemotePrompt sandbox escape attempt
RuleID : 50696 - Type : BROWSER-FIREFOX - Revision : 1
2019-07-31Mozilla Firefox Array.prototype.pop type confusion attempt
RuleID : 50519 - Type : BROWSER-FIREFOX - Revision : 2
Hide | Show 20 More...
DateDescription
2019-07-31Mozilla Firefox Array.prototype.pop type confusion attempt
RuleID : 50518 - Type : BROWSER-FIREFOX - Revision : 2
2019-01-17Mozilla Firefox method array.prototype.push remote code execution attempt
RuleID : 48626 - Type : BROWSER-FIREFOX - Revision : 2
2019-01-17Mozilla Firefox method array.prototype.push remote code execution attempt
RuleID : 48625 - Type : BROWSER-FIREFOX - Revision : 2
2019-01-10Mozilla Firefox javascript type confusion code execution attempt
RuleID : 48565 - Type : BROWSER-FIREFOX - Revision : 1
2019-01-10Mozilla Firefox javascript type confusion code execution attempt
RuleID : 48564 - Type : BROWSER-FIREFOX - Revision : 1
2018-12-07out-of-bounds write attempt with malicious MAR file detected
RuleID : 48296 - Type : FILE-OTHER - Revision : 2
2018-12-07out-of-bounds write attempt with malicious MAR file detected
RuleID : 48295 - Type : FILE-OTHER - Revision : 2
2018-11-10libvorbis VORBIS audio data out of bounds write attempt
RuleID : 48106 - Type : FILE-MULTIMEDIA - Revision : 1
2018-11-10libvorbis VORBIS audio data out of bounds write attempt
RuleID : 48105 - Type : FILE-MULTIMEDIA - Revision : 1
2018-11-08Microsoft Edge OP_Memset type confusion attempt
RuleID : 48052 - Type : BROWSER-IE - Revision : 4
2018-11-08Microsoft Edge OP_Memset type confusion attempt
RuleID : 48051 - Type : BROWSER-IE - Revision : 4
2018-02-20Mozilla Firefox HTTP index format out of bounds read attempt
RuleID : 45476 - Type : BROWSER-FIREFOX - Revision : 2
2018-01-18Multiple browser pressure function denial of service attempt
RuleID : 45206 - Type : BROWSER-FIREFOX - Revision : 2
2017-07-27Mozilla Firefox domFuzzLite3 table use after free attempt
RuleID : 43347 - Type : BROWSER-FIREFOX - Revision : 2
2017-07-27Mozilla Firefox domFuzzLite3 table use after free attempt
RuleID : 43346 - Type : BROWSER-FIREFOX - Revision : 2
2016-12-02Mozilla Firefox ESR NotifyTimeChange use after free attempt
RuleID : 40896-community - Type : BROWSER-FIREFOX - Revision : 3
2017-01-04Mozilla Firefox ESR NotifyTimeChange use after free attempt
RuleID : 40896 - Type : BROWSER-FIREFOX - Revision : 3
2016-12-01Mozilla Firefox ESR NotifyTimeChange use after free attempt
RuleID : 40888-community - Type : BROWSER-FIREFOX - Revision : 3
2017-01-04Mozilla Firefox ESR NotifyTimeChange use after free attempt
RuleID : 40888 - Type : BROWSER-FIREFOX - Revision : 3
2016-03-15Mozilla Firefox IDL fragment privilege escalation attempt
RuleID : 37626 - Type : BROWSER-FIREFOX - Revision : 2

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-def329f680.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1414.nasl - Type : ACT_GATHER_INFO
2018-12-27Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-3831.nasl - Type : ACT_GATHER_INFO
2018-12-27Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-3833.nasl - Type : ACT_GATHER_INFO
2018-12-18Name : A web browser installed on the remote macOS host is affected by multiple vuln...
File : macosx_firefox_62_0.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-12-14Name : The remote Debian host is missing a security update.
File : debian_DLA-1605.nasl - Type : ACT_GATHER_INFO
2018-12-13Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4354.nasl - Type : ACT_GATHER_INFO
2018-12-13Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_d10b49b28d0249e8afde0844626317af.nasl - Type : ACT_GATHER_INFO
2018-12-12Name : A web browser installed on the remote macOS host is affected by multiple vuln...
File : macosx_firefox_60_4_esr.nasl - Type : ACT_GATHER_INFO
2018-12-12Name : A web browser installed on the remote macOS host is affected by multiple vuln...
File : macosx_firefox_64_0.nasl - Type : ACT_GATHER_INFO
2018-12-12Name : A web browser installed on the remote Windows host is affected by multiple vu...
File : mozilla_firefox_60_4_esr.nasl - Type : ACT_GATHER_INFO
2018-12-12Name : A web browser installed on the remote Windows host is affected by multiple vu...
File : mozilla_firefox_64_0.nasl - Type : ACT_GATHER_INFO
2018-12-11Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1384.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-2831.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-2885.nasl - Type : ACT_GATHER_INFO
2018-11-26Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201811-13.nasl - Type : ACT_GATHER_INFO
2018-11-21Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-3531.nasl - Type : ACT_GATHER_INFO
2018-11-21Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-3532.nasl - Type : ACT_GATHER_INFO
2018-11-13Name : The remote Debian host is missing a security update.
File : debian_DLA-1575.nasl - Type : ACT_GATHER_INFO
2018-11-13Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4337.nasl - Type : ACT_GATHER_INFO
2018-11-09Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-3403.nasl - Type : ACT_GATHER_INFO
2018-11-09Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201811-04.nasl - Type : ACT_GATHER_INFO
2018-11-08Name : The remote Debian host is missing a security update.
File : debian_DLA-1571.nasl - Type : ACT_GATHER_INFO
2018-11-07Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1367.nasl - Type : ACT_GATHER_INFO
2018-11-06Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1359.nasl - Type : ACT_GATHER_INFO