mozilla

3,565 tracked vulnerabilities.

CVE-2023-25732 HIGH
Firefox < 110.0 and Firefox ESR < 102.8 - Out-of-bounds Write in xpcom inputStream Encoding
Jun 02, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-25731 HIGH
Firefox < 110.0 - Privilege Escalation via Developer Tools Network Panel URL Preview
Jun 02, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-25730 MEDIUM
Firefox <110, Thunderbird <102.8, Firefox ESR <102.8 - Info Disclosure
Jun 02, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-25729 HIGH
Firefox < 110.0, Firefox ESR < 102.8, Thunderbird < 102.8 - Incorrect Authorization via ExpandedPrincipals
Jun 02, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-25728 MEDIUM
Firefox < 110.0 and Firefox ESR < 102.8 - Information Disclosure via CSP Report-Only Header
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23606 HIGH
Firefox < 109.0 - Out-of-bounds Write
Jun 02, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-23605 HIGH
Firefox < 109 and Firefox ESR < 102.7 - Out-of-bounds Write
Jun 02, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-23604 MEDIUM
Firefox < 109.0 - Incorrect Authorization via DOMParser SystemPrincipal Bypass
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23603 MEDIUM
Firefox < 109 and Firefox ESR < 102.7 - Data Exfiltration via Console Log Style Directive
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23602 MEDIUM
Firefox < 109 and Firefox ESR < 102.7 - Content Security Policy Bypass via WebSocket in WebWorker
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23601 MEDIUM
Firefox < 109 and Firefox ESR < 102.7 - Origin Validation Error via Cross-Origin URL Drag
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23600 MEDIUM
Firefox < 109.0 - Notification Permission Bypass via Origin Context Mismatch
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23599 MEDIUM
Firefox < 109, Firefox ESR < 102.7, Thunderbird < 102.7 - Command I...
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23598 MEDIUM
Firefox <109-102.7 - Info Disclosure
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-23597 MEDIUM
Firefox < 109.0 - Arbitrary File Read via Web Security Bypass
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-1945 MEDIUM
Thunderbird <102.10 - Memory Corruption
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-0767 HIGH
Firefox < 110, Thunderbird < 102.8, Firefox ESR < 102.8 - Memory Co...
Jun 02, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-0616 MEDIUM
Thunderbird < 102.8 - Denial of Service via Crafted OpenPGP MIME Email
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-0547 MEDIUM
Thunderbird 68.0-102.9.1 - Improper Certificate Validation in S/MIME Encrypted Email
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-0430 MEDIUM
Thunderbird 68.0-102.7.0 - Improper Certificate Validation for S/MIME Signatures
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2022-46884 HIGH
Firefox < 106.0 - Use-After-Free in SVG Image Refresh Driver
Aug 24, 2023
CVSS 8.8
EPSS 0.00
CVE-2022-0637 MEDIUM
pollbot < 1.4.6 - Open Redirect
Feb 16, 2023
CVSS 6.1
EPSS 0.00
CVE-2022-46885 HIGH
Mozilla Firefox <106 - Memory Corruption
Dec 22, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-46883 HIGH
Mozilla Firefox <106 - Memory Corruption
Dec 22, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-46882 CRITICAL
Firefox < 107.0 and Firefox ESR < 102.6 - Use-After-Free in WebGL Extensions
Dec 22, 2022
CVSS 9.8
EPSS 0.00
Products
firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 19 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2
Quick Filters
Critical CVEs With Exploits In CISA KEV