Palemoon Pale Moon vulnerabilities
3 known vulnerabilities affecting palemoon/pale_moon.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2020-9545HIGHCVSS 7.5≥ 28.0, < 28.8.42020-03-02
CVE-2020-9545 [HIGH] CWE-476 CVE-2020-9545: Pale Moon 28.x before 28.8.4 has a segmentation fault related to module scripting, as demonstrated b
Pale Moon 28.x before 28.8.4 has a segmentation fault related to module scripting, as demonstrated by a Lacoste web site.
nvd
CVE-2018-12292CRITICALCVSS 9.8PoCfixed in 27.9.32018-06-13
CVE-2018-12292 [CRITICAL] CWE-416 CVE-2018-12292: A use-after-free vulnerability exists in DOMProxyHandler::EnsureExpandoObject in Pale Moon before 27
A use-after-free vulnerability exists in DOMProxyHandler::EnsureExpandoObject in Pale Moon before 27.9.3.
nvd
CVE-2013-1591CRITICALCVSS 9.8fixed in 15.42013-01-31
CVE-2013-1591 [CRITICAL] CWE-190 CVE-2013-1591: Stack-based buffer overflow in libpixman, as used in Pale Moon before 15.4 and possibly other produc
Stack-based buffer overflow in libpixman, as used in Pale Moon before 15.4 and possibly other products, has unspecified impact and context-dependent attack vectors. NOTE: this issue might be resultant from an integer overflow in the fast_composite_scaled_bilinear function in pixman-inlines.h, which triggers an infinite loop.
nvd