mozilla

3,621 tracked vulnerabilities.

CVE-2023-6860 MEDIUM
Firefox ESR < 115.6 & Firefox < 121 - RCE
Dec 19, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-6859 HIGH
Firefox < 121.0, Firefox ESR < 115.6, Thunderbird < 115.6 - Use-After-Free in TLS Socket Creation
Dec 19, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-6858 HIGH
Firefox < 121.0 and Firefox ESR < 115.6 - Heap Buffer Overflow in nsTextFragment
Dec 19, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-6857 MEDIUM
Firefox < 121.0 and Firefox ESR < 115.6 - Race Condition via Symlink Resolution
Dec 19, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-6856 HIGH
Firefox < 121.0 and Firefox ESR < 115.6 - Remote Code Execution via WebGL DrawElementsInstanced
Dec 19, 2023
CVSS 8.8
EPSS 0.20
CVE-2023-6135 MEDIUM
Firefox < 121.0 - Side-Channel Attack via Minerva on NSS NIST Curves
Dec 19, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-50762 MEDIUM
Thunderbird < 115.6 - Info Disclosure
Dec 19, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-50761 MEDIUM
Thunderbird < 115.6 - Info Disclosure
Dec 19, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-4421 MEDIUM
NSS < 3.61 - Timing Side-Channel Attack via PKCS#1 v1.5 Padding Check
Dec 12, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-6213 HIGH
Firefox < 120.0 - Out-of-bounds Write
Nov 21, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-6212 HIGH
Firefox < 120.0 - Out-of-bounds Write
Nov 21, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-6211 MEDIUM
Firefox < 120.0 - UI Spoofing via HTTPS-Only Mode Exception Clickjacking
Nov 21, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-6210 MEDIUM
Firefox < 120.0 - Security Bypass via Insecure Pop-up Content Loading
Nov 21, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-6209 MEDIUM
Firefox < 120, Firefox ESR < 115.5.0, Thunderbird < 115.5 - Path Traversal via Relative URL Parsing
Nov 21, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-6208 HIGH
Firefox < 120.0 - Unauthenticated Information Disclosure via X11 Selection API
Nov 21, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-6207 HIGH
Firefox < 120.0 and Firefox ESR < 115.5.0 - Use-After-Free in ReadableByteStreams
Nov 21, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-6206 MEDIUM
Firefox < 120, Firefox ESR < 115.5.0, Thunderbird < 115.5 - Info Di...
Nov 21, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-6205 MEDIUM
Firefox < 120 and Firefox ESR < 115.5.0 - Use-After-Free in MessagePort
Nov 21, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-6204 MEDIUM
Firefox < 120.0 - Out-of-bounds Read via Canvas Image Rendering
Nov 21, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-49061 MEDIUM
Firefox for iOS < 120.0 - HTML Template Injection via Reader Mode
Nov 21, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-49060 CRITICAL
Firefox for iOS < 120 - Info Disclosure
Nov 21, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-5758 MEDIUM
Firefox for iOS < 119.0 - Reflected Cross-Site Scripting via Reader Mode Redirect URL
Oct 25, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-5732 MEDIUM
Firefox < 117.0 and ESR < 115.4.1 - URL Spoofing via Bidirectional Characters
Oct 25, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-5731 CRITICAL
Firefox < 119.0 - Out-of-bounds Write
Oct 25, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-5730 CRITICAL
Firefox < 119, Firefox ESR < 115.4, Thunderbird < 115.4.1 - Out-of-bounds Write
Oct 25, 2023
CVSS 9.8
EPSS 0.01