mozilla
3,621 tracked vulnerabilities.
CVE-2023-3600
HIGH
Firefox and Firefox ESR < 115.0.2 and Thunderbird < 115.0.1 - Use-After-Free
Jul 12, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-37456
MEDIUM
Firefox for iOS < 115 - NULL Pointer Dereference in Session Restore Helper
Jul 12, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-37455
MEDIUM
Firefox for iOS < 115 - Info Disclosure
Jul 12, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-3482
MEDIUM
Firefox < 115.0 - Unauthenticated LocalStorage Data Storage via about:blank Iframe
Jul 05, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-37212
HIGH
Firefox < 115.0 - Out-of-bounds Write
Jul 05, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-37211
HIGH
Firefox < 115.0 and Firefox ESR < 102.13 - Out-of-bounds Write
Jul 05, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-37210
MEDIUM
Firefox < 115.0 - Full-Screen Mode Spoofing via Alert and Prompt Calls
Jul 05, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-37209
HIGH
Firefox < 115.0 - Use-After-Free in NotifyOnHistoryReload
Jul 05, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-37206
MEDIUM
Firefox < 115.0 - Symlink Following via File Upload
Jul 05, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-37205
MEDIUM
Firefox < 115.0 - URL Spoofing via RTL Arabic Characters
Jul 05, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-37204
MEDIUM
Firefox < 115.0 - Spoofing Attack via Fullscreen Notification Obscuring
Jul 05, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-37203
HIGH
Firefox < 115.0 - Arbitrary Code Execution via Drag and Drop API
Jul 05, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-37208
HIGH
Firefox < 115.0 and Firefox ESR < 102.13 - Unrestricted Upload of File with Dangerous Type via Diagcab Files
Jul 05, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-37207
MEDIUM
Firefox <115, Firefox ESR <102.13, Thunderbird <102.13 - SSRF
Jul 05, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-37202
HIGH
Firefox < 115.0 and Firefox ESR < 102.13 - Use-After-Free via Cross-Compartment Wrapper
Jul 05, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-37201
HIGH
Firefox < 115.0 and Firefox ESR < 102.13 - Use-After-Free via WebRTC Connection
Jul 05, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-34417
CRITICAL
Firefox < 114.0 - Out-of-bounds Write
Jun 19, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-34416
CRITICAL
Firefox < 114.0 and Firefox ESR < 102.12 - Out-of-bounds Write
Jun 19, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-34415
MEDIUM
Firefox < 114.0 - Open Redirect via Data URL Redirect Bypass
Jun 19, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-34414
LOW
Firefox < 114.0 and Firefox ESR < 102.12 - Improper Certificate Validation via Clickjacking Bypass
Jun 19, 2023
CVSS 3.1
EPSS 0.01
CVE-2023-29546
MEDIUM
Firefox for Android < 112 - Info Disclosure
Jun 19, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-29545
MEDIUM
Firefox < 112 - Firefox/Thunderbird Path Traversal
Jun 19, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-29542
CRITICAL
Firefox < 112 & Thunderbird < 102.10 - Info Disclosure
Jun 19, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-29534
CRITICAL
Firefox/Focus for Android <112 - Info Disclosure
Jun 19, 2023
CVSS 9.1
EPSS 0.01
CVE-2023-25747
HIGH
Firefox for Android < 110.1.0 - Use-After-Free in AAudio Backend
Jun 19, 2023
CVSS 7.5
EPSS 0.01
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters