CVE-2013-1690
Mozilla Firefox and Thunderbird Denial-of-Service Vulnerability
CVSS
—
No CVSS
EPSS
69.0%
p99
KEV
YES
Mar 28, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
69.0%EPSS · 30 days69.0%
2026-06-302026-07-16
Product
Mozilla / Firefox and Thunderbird
Vulnerability
Mozilla Firefox and Thunderbird Denial-of-Service Vulnerability
Added to KEV
Mar 28, 2022
Remediate by
Apr 18, 2022
Known ransomware use
No
Summary description
Mozilla Firefox and Thunderbird do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial-of-service (DoS) or possibly execute malicious code via a crafted web site.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2013-1690
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2019-11708—98.9%
KEV—80Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability—CVE-2019-17026—98.6%
KEV—80Mozilla Firefox And Thunderbird Type Confusion Vulnerability—CVE-2019-11707—98.4%
KEV—80Mozilla Firefox and Thunderbird Type Confusion Vulnerability—CVE-2020-6820—92.8%
KEV—78Mozilla Firefox And Thunderbird Use-After-Free Vulnerability—CVE-2020-6819—85.7%
KEV—76Mozilla Firefox And Thunderbird Use-After-Free Vulnerability—