mozilla

3,621 tracked vulnerabilities.

CVE-2021-43529 CRITICAL
Thunderbird <91.3.0 - Heap Overflow
Feb 16, 2023
CVSS 9.8
EPSS 0.00
CVE-2021-23980 MEDIUM
Mozilla Bleach < 3.3.0 - Cross-Site Scripting via SVG/Math Tags with Strip Comments Disabled
Feb 16, 2023
CVSS 6.1
EPSS 0.00
CVE-2021-4221 MEDIUM
Firefox < 92.0 - Domain Spoofing via RTL Character Homoglyph
Dec 22, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-4140 CRITICAL
Firefox ESR < 91.5, Firefox < 96, Thunderbird < 91.5 - XSS
Dec 22, 2022
CVSS 10.0
EPSS 0.01
CVE-2021-4129 CRITICAL
Firefox < 95.0 and Firefox ESR < 91.4.0 - Out-of-bounds Write
Dec 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-4128 MEDIUM
Firefox < 95.0 - Use-After-Free in Fullscreen Mode Transition
Dec 22, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-4127 CRITICAL
Thunderbird <78.9 - Firefox ESR <78.9 - Info Disclosure
Dec 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-4126 MEDIUM
Thunderbird <91.4.1 - Info Disclosure
Dec 22, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-4138 MEDIUM
geckodriver < 0.30.0 - Server-Side Request Forgery via Host Header
May 02, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-43546 MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-43545 MEDIUM
Firefox < 95.0 - Denial of Service via Location API Loop
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43544 MEDIUM
Firefox < 95.0 - Cross-Site Scripting via SEND Intent URL Handling
Dec 08, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-43543 MEDIUM
Firefox < 95.0 and Firefox ESR < 91.4.0 - Cross-Site Scripting via CSP Sandbox Escape
Dec 08, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-43542 MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43541 MEDIUM
Thunderbird <91.4.0-Firefox <95.0 - XSS
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43540 MEDIUM
Firefox < 95.0 - ServiceWorker Persistence via WebExtension
Dec 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-43539 HIGH
Thunderbird <91.4.0-Firefox <95 - Use After Free
Dec 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-43538 MEDIUM
Thunderbird <91.4.0-Firefox <95 - Info Disclosure
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-43537 HIGH
Thunderbird <91.4.0-Firefox <95 - Memory Corruption
Dec 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-43536 MEDIUM
Thunderbird <91.4.0 - Firefox <95. - Info Disclosure
Dec 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-43535 HIGH
Firefox <93, Thunderbird <91.3, Firefox ESR <91.3 - Use After Free
Dec 08, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-43534 HIGH
Mozilla Firefox <94 - Memory Corruption
Dec 08, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-43533 MEDIUM
Firefox < 94.0 - Domain Spoofing via Internationalized Domain Name Parsing
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-43532 MEDIUM
Mozilla Firefox < 94 - Authentication Token Leak via Image Link Copy
Dec 08, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-43531 MEDIUM
Firefox < 94.0 - Origin Validation Error via Web Extension Context Menu
Dec 08, 2021
CVSS 4.3
EPSS 0.00