The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
A crash and out-of-bounds read can occur when the buffer of a texture client is freed while it is still in use during graphic operations. This results is a potentially exploitable crash and the possibility of reading from the memory of the freed buffers. This vulnerability affects Firefox < 65.
Base Score: 7.5
Impact Score: 6.4
Exploitability Score: 10
Base Score: 9.8
Impact Score: 5.9
Exploitability Score: 3.9
|700399||Mozilla Firefox < 65.0 Multiple Vulnerabilities||Nessus Network Monitor||Web Clients|
|121512||Mozilla Firefox < 65.0||Nessus||Windows|
|121511||Mozilla Firefox < 65.0||Nessus||MacOS X Local Security Checks|
|121507||Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 18.10 : Firefox vulnerabilities (USN-3874-1)||Nessus||Ubuntu Local Security Checks|
|121447||FreeBSD : mozilla -- multiple vulnerabilities (b1f7d52f-fc42-48e8-8403-87d4c9d26229)||Nessus||FreeBSD Local Security Checks|