mozilla

3,565 tracked vulnerabilities.

CVE-2023-4575 MEDIUM
Firefox <117, Thunderbird <102.15-102.15 - Use After Free
Sep 11, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-4574 MEDIUM
Firefox <117, Thunderbird <102.15-115.2 - Use After Free
Sep 11, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-4104 MEDIUM
Mozilla VPN < 2.16.1 (Linux) - Unauthenticated VPN Configuration via D-Bus
Sep 11, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-4573 MEDIUM
Firefox <117, Thunderbird <115.2 - Use After Free
Sep 11, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-4058 CRITICAL
Firefox < 116.0 - Out-of-bounds Write
Aug 01, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-4057 CRITICAL
Firefox < 116.0 and Firefox ESR < 115.1 - Out-of-bounds Write
Aug 01, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-4056 CRITICAL
Firefox < 116 - Out-of-bounds Write
Aug 01, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-4055 HIGH
Firefox < 116 - Cookie State Inconsistency via Excessive Cookies per Domain
Aug 01, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4054 MEDIUM
Firefox < 116.0 - Unauthenticated Arbitrary Code Execution via Appref-MS File Handling
Aug 01, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-4053 MEDIUM
Firefox <116, Firefox ESR <115.2, Thunderbird <115.2 - SSRF
Aug 01, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-4052 MEDIUM
Firefox <116 - Privilege Escalation
Aug 01, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-4051 HIGH
Firefox <116, Firefox ESR <115.2, Thunderbird <115.2 - Info Disclosure
Aug 01, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4050 HIGH
Firefox < 116 - Out-of-bounds Write via Untrusted Input Stream
Aug 01, 2023
CVSS 7.5
EPSS 0.03
CVE-2023-4049 MEDIUM
Firefox < 116 - Use-After-Free via Reference Counting Race Condition
Aug 01, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-4048 HIGH
Firefox < 116 - Out-of-bounds Read via DOMParser HTML Parsing
Aug 01, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4047 HIGH
Firefox < 116 - Cross-Site Request Forgery via Permission Popup Notification Delay
Aug 01, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-4046 MEDIUM
Firefox < 116 - Denial of Service via WASM JIT Analysis
Aug 01, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-4045 MEDIUM
Firefox < 116 - Origin Validation Error via Offscreen Canvas
Aug 01, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-3417 HIGH
Thunderbird <115.0.1-<102.13.1 - Info Disclosure
Jul 24, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-3600 HIGH
Firefox and Firefox ESR < 115.0.2 and Thunderbird < 115.0.1 - Use-After-Free
Jul 12, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-37456 MEDIUM
Firefox for iOS < 115 - NULL Pointer Dereference in Session Restore Helper
Jul 12, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-37455 MEDIUM
Firefox for iOS < 115 - Info Disclosure
Jul 12, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-3482 MEDIUM
Firefox < 115.0 - Unauthenticated LocalStorage Data Storage via about:blank Iframe
Jul 05, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-37212 HIGH
Firefox < 115.0 - Out-of-bounds Write
Jul 05, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-37211 HIGH
Firefox < 115.0 and Firefox ESR < 102.13 - Out-of-bounds Write
Jul 05, 2023
CVSS 8.8
EPSS 0.00
Products
firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 19 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2
Quick Filters
Critical CVEs With Exploits In CISA KEV