mozilla
3,621 tracked vulnerabilities.
CVE-2023-5729
MEDIUM
Firefox < 119.0 - Spoofing via Fullscreen and WebAuthn Prompt Overlap
Oct 25, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5728
HIGH
Firefox < 119.0 and Firefox ESR < 115.4 - Use-After-Free during Garbage Collection
Oct 25, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-5727
MEDIUM
Firefox <119, Thunderbird <115.4.1 - Command Injection
Oct 25, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-5726
MEDIUM
Firefox <119 & Thunderbird <115.4.1 - Info Disclosure
Oct 25, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5725
MEDIUM
Firefox < 119.0 - Sensitive Data Exposure via Malicious WebExtension URL Opening
Oct 25, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5724
HIGH
Firefox < 119 and Firefox ESR < 115.4 - Denial of Service via Large Draw Calls
Oct 25, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-5723
MEDIUM
Firefox < 119.0 - Cookie Injection via Invalid Characters in document.cookie
Oct 25, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-5722
MEDIUM
Firefox < 119.0 - Information Disclosure via Opaque Response Size and Vary Header
Oct 25, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-5721
MEDIUM
Firefox < 119.0 and Firefox ESR < 115.4 - Unintended UI Layer Activation via Insufficient Activation-Delay
Oct 25, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-42808
MEDIUM
Mozilla Common Voice 1.88.2 - Reflected Cross-Site Scripting via Path Expression
Oct 04, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-5217
HIGH
KEV
libvpx < 1.13.1 - Heap Buffer Overflow in VP8 Encoding
Sep 28, 2023
CVSS 8.8
EPSS 0.49
CVE-2023-5176
CRITICAL
Firefox < 118, Firefox ESR < 115.3, Thunderbird < 115.3 - Out-of-bounds Write
Sep 27, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-5175
CRITICAL
Firefox < 118 - Use-After-Free via ImageBitmap Handling
Sep 27, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-5174
CRITICAL
Firefox < 118, Firefox ESR < 115.3, Thunderbird < 115.3 - Use-After-Free via Sandbox Handle Duplication
Sep 27, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-5173
HIGH
Firefox < 118 - Integer Overflow to Out-of-Bounds Write via Non-HTTPS Alternate Services
Sep 27, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-5172
CRITICAL
Firefox < 118 - Use-After-Free in Ion Engine Hashtable
Sep 27, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-5171
MEDIUM
Firefox <118-0, Thunderbird <115.3 - Use After Free
Sep 27, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-5170
HIGH
Firefox < 118.0 - Use-After-Free in Canvas Rendering
Sep 27, 2023
CVSS 7.4
EPSS 0.01
CVE-2023-5169
MEDIUM
Firefox < 118, Firefox ESR < 115.3, and Thunderbird < 115.3 - Out-of-bounds Write via PathRecording
Sep 27, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-5168
CRITICAL
Firefox < 118, Firefox ESR < 115.3, Thunderbird < 115.3 - Out-of-bounds Write via FilterNodeD2D1
Sep 27, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-4863
HIGH
KEV
Google Chrome <116.0.5845.187 - Buffer Overflow
Sep 12, 2023
CVSS 8.8
EPSS 1.00
CVE-2023-4585
HIGH
Firefox < 117.0 and Firefox ESR < 115.2 - Out-of-bounds Write
Sep 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-4584
HIGH
Firefox <117, ESR <102.15/115.2, Thunderbird <102.15/115.2 - Out-of-bounds Write
Sep 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-4583
HIGH
Firefox < 117 and Firefox ESR < 115.2 - Use-After-Free in HttpBaseChannel
Sep 11, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-4582
HIGH
Firefox <117, Firefox ESR <115.2, Thunderbird <115.2 - Buffer Overflow
Sep 11, 2023
CVSS 8.8
EPSS 0.01
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters