mozilla
3,621 tracked vulnerabilities.
CVE-2023-29539
HIGH
Firefox < 112.0 - Reflected File Download via Content-Disposition Filename Truncation
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-29538
MEDIUM
Firefox < 112.0 - Directory Path Exposure via WebExtension URI Handling
Jun 02, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-29537
HIGH
Firefox and Focus for Android < 112.0 - Remote Code Execution via Font Initialization Race Condition
Jun 02, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-29536
HIGH
Firefox < 112.0 - Use-After-Free via Memory Manager
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-29535
MEDIUM
Firefox < 112.0 - Use-After-Free via Weak Map Access
Jun 02, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-29533
MEDIUM
Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firef...
Jun 02, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-28177
HIGH
Firefox < 111.0 - Out-of-bounds Write
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-28176
HIGH
Firefox < 111.0 and Firefox ESR < 102.9 - Out-of-bounds Write
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-28164
MEDIUM
Firefox < 111.0 and Firefox ESR < 102.9 - Origin Validation Error via Cross-Origin Iframe Drag
Jun 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-28163
MEDIUM
Firefox < 111.0 and Firefox ESR < 102.9 - Path Traversal via Save As Dialog
Jun 02, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-28162
HIGH
Firefox < 111.0 and Firefox ESR < 102.9 - Type Confusion in AudioWorklet Implementation
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-28161
HIGH
Firefox < 111.0 - Permission Persistence via File URL Handling
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-28160
MEDIUM
Firefox < 111.0 - Information Disclosure via Web Extension File Redirect
Jun 02, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-28159
MEDIUM
Firefox < 111.0 - UI Spoofing via Fullscreen Notification Bypass
Jun 02, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-25752
MEDIUM
Firefox <111, Firefox ESR <102.9, Thunderbird <102.9 - Info Disclosure
Jun 02, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-25751
MEDIUM
Firefox < 111.0 and Firefox ESR < 102.9 - Use-After-Free in JIT Code Invalidation
Jun 02, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-25750
MEDIUM
Firefox < 111.0 - Path Traversal via ServiceWorker Offline Cache
Jun 02, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-25749
MEDIUM
Firefox < 111.0 - Incorrect Authorization via Intent Launch Confirmation Bypass
Jun 02, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-25748
MEDIUM
Firefox < 111.0 - UI Spoofing via Fullscreen Notification Obscuring
Jun 02, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-25746
HIGH
Firefox ESR < 102.8 - Out-of-bounds Write
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-25745
HIGH
Firefox < 110.0 - Out-of-bounds Write
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-25744
HIGH
Firefox < 110.0 and Firefox ESR < 102.8 - Out-of-bounds Write
Jun 02, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-25743
HIGH
Firefox Focus - Authentication Bypass by Spoofing via Fullscreen Mode
Jun 02, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-25742
MEDIUM
Firefox <110, Thunderbird <102.8, Firefox ESR <102.8 - Info Disclosure
Jun 02, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-25741
MEDIUM
Firefox < 110.0 - Cross-Origin Image Size Leak via Drag-and-Drop
Jun 02, 2023
CVSS 6.5
EPSS 0.01
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters