mozilla
3,621 tracked vulnerabilities.
CVE-2021-43529
CRITICAL
Thunderbird <91.3.0 - Heap Overflow
Feb 16, 2023
CVSS 9.8
EPSS 0.00
CVE-2021-23980
MEDIUM
Mozilla Bleach < 3.3.0 - Cross-Site Scripting via SVG/Math Tags with Strip Comments Disabled
Feb 16, 2023
CVSS 6.1
EPSS 0.00
CVE-2021-4221
MEDIUM
Firefox < 92.0 - Domain Spoofing via RTL Character Homoglyph
Dec 22, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-4140
CRITICAL
Firefox ESR < 91.5, Firefox < 96, Thunderbird < 91.5 - XSS
Dec 22, 2022
CVSS 10.0
EPSS 0.01
CVE-2021-4129
CRITICAL
Firefox < 95.0 and Firefox ESR < 91.4.0 - Out-of-bounds Write
Dec 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-4128
MEDIUM
Firefox < 95.0 - Use-After-Free in Fullscreen Mode Transition
Dec 22, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-4127
CRITICAL
Thunderbird <78.9 - Firefox ESR <78.9 - Info Disclosure
Dec 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-4126
MEDIUM
Thunderbird <91.4.1 - Info Disclosure
Dec 22, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-4138
MEDIUM
geckodriver < 0.30.0 - Server-Side Request Forgery via Host Header
May 02, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-43546
MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-43545
MEDIUM
Firefox < 95.0 - Denial of Service via Location API Loop
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43544
MEDIUM
Firefox < 95.0 - Cross-Site Scripting via SEND Intent URL Handling
Dec 08, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-43543
MEDIUM
Firefox < 95.0 and Firefox ESR < 91.4.0 - Cross-Site Scripting via CSP Sandbox Escape
Dec 08, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-43542
MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43541
MEDIUM
Thunderbird <91.4.0-Firefox <95.0 - XSS
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43540
MEDIUM
Firefox < 95.0 - ServiceWorker Persistence via WebExtension
Dec 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-43539
HIGH
Thunderbird <91.4.0-Firefox <95 - Use After Free
Dec 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-43538
MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-43537
HIGH
Thunderbird <91.4.0-Firefox <95 - Memory Corruption
Dec 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-43536
MEDIUM
Thunderbird <91.4.0 - Firefox <95. - Info Disclosure
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43535
HIGH
Firefox <93, Thunderbird <91.3, Firefox ESR <91.3 - Use After Free
Dec 08, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-43534
HIGH
Mozilla Firefox <94 - Memory Corruption
Dec 08, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-43533
MEDIUM
Firefox < 94.0 - Domain Spoofing via Internationalized Domain Name Parsing
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-43532
MEDIUM
Mozilla Firefox < 94 - Authentication Token Leak via Image Link Copy
Dec 08, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-43531
MEDIUM
Firefox < 94.0 - Origin Validation Error via Web Extension Context Menu
Dec 08, 2021
CVSS 4.3
EPSS 0.00
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters