mozilla

3,565 tracked vulnerabilities.

CVE-2021-38507 MEDIUM
HTTP2 Opportunistic Encryption - SSRF
Dec 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-38506 MEDIUM
Firefox < 94.0 - UI Spoofing via Fullscreen Mode Navigation
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-38505 MEDIUM
Firefox < 94.0 and Firefox ESR < 91.3.0 - Sensitive Data Exposure via Cloud Clipboard
Dec 08, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-38504 HIGH
Firefox < 94, Thunderbird < 91.3, Firefox ESR < 91.3 - Use After Free
Dec 08, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-38503 CRITICAL
Firefox < 94 - Firefox ESR < 91.3 - XSS
Dec 08, 2021
CVSS 10.0
EPSS 0.01
CVE-2021-38502 MEDIUM
Thunderbird <91.2 - Privilege Escalation
Nov 03, 2021
CVSS 5.9
EPSS 0.00
CVE-2021-38501 HIGH
Mozilla Firefox <93 - Memory Corruption
Nov 03, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-38500 HIGH
Mozilla Firefox <93 - Memory Corruption
Nov 03, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-38499 HIGH
Mozilla Firefox <93 - Memory Corruption
Nov 03, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-38498 HIGH
Firefox < 93, Thunderbird < 91.2, Firefox ESR < 91.2 - Use After Free
Nov 03, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-38497 MEDIUM
Firefox < 93, Thunderbird < 91.2, Firefox ESR < 91.2 - CSRF
Nov 03, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-38496 HIGH
Thunderbird <78.15, Firefox ESR <91.2, Firefox <93 - Memory Corruption
Nov 03, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-38495 HIGH
Mozilla Thunderbird <91.1 - Memory Corruption
Nov 03, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-38494 HIGH
Mozilla Firefox <92 - Memory Corruption
Nov 03, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-38493 HIGH
Mozilla Firefox <92 - Memory Corruption
Nov 03, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-38492 MEDIUM
Firefox < 92.0 and Firefox ESR < 78.14 - Unauthenticated Arbitrary Code Execution via mk Scheme Delegation
Nov 03, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-38491 MEDIUM
Firefox < 92.0 - Mixed Content Security Bypass via Opaque Origin Handling
Nov 03, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-29993 HIGH
Firefox < 92.0 - Denial of Service and UI Spoofing via Intent Protocol Navigation
Nov 03, 2021
CVSS 8.1
EPSS 0.00
CVE-2021-29991 HIGH
Firefox < 91.0.1 - HTTP Request Smuggling via HTTP/3 Header Newline Injection
Nov 03, 2021
CVSS 8.1
EPSS 0.00
CVE-2021-40529 MEDIUM
Botan < 2.18.1 - Plaintext Recovery via ElGamal Cross-Configuration Attack
Sep 06, 2021
CVSS 5.9
EPSS 0.00
CVE-2021-29990 HIGH
Mozilla Firefox <91 - Memory Corruption
Aug 17, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-29989 HIGH
Mozilla Firefox <91 - Memory Corruption
Aug 17, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-29988 HIGH
Firefox < 91.0 and Firefox ESR < 78.13.0 - Out-of-bounds Read via Inline List-Item Handling
Aug 17, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-29987 MEDIUM
Firefox < 91.0 - Permission Panel Clickjacking via Overlapping UI
Aug 17, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-29986 HIGH
Thunderbird <78.13-91 - Memory Corruption
Aug 17, 2021
CVSS 8.1
EPSS 0.01
Products
firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 19 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2
Quick Filters
Critical CVEs With Exploits In CISA KEV