mozilla

3,565 tracked vulnerabilities.

CVE-2021-29960 MEDIUM
Firefox < 89.0 - Unauthenticated Sensitive Data Exposure via Print Filename Cache
Jun 24, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-29959 MEDIUM
Firefox < 89.0 - Incorrect Authorization via Microphone and Camera Permissions
Jun 24, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-29958 MEDIUM
Firefox for iOS < 34.0 - Missing Authorization for Private Browsing Mode Cookie Isolation
Jun 24, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-29957 MEDIUM
Thunderbird < 78.10.2 - Info Disclosure
Jun 24, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-29956 MEDIUM
Thunderbird 78.8.1-78.10.1 - Cleartext Storage of OpenPGP Secret Keys
Jun 24, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-29955 MEDIUM
Firefox < 87.0 and Firefox ESR < 78.9 - Memory Address Leak via Floating Point Value Injection
Jun 24, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-29954 CRITICAL
Hubs Cloud Reticulum < 1.0.1 - Cleartext Storage of Sensitive Information
Jun 24, 2021
CVSS 9.8
EPSS 0.00
CVE-2021-29953 MEDIUM
Firefox < 88.0.1 and Firefox for Android < 88.1.3 - Universal Cross-Site Scripting
Jun 24, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-29952 HIGH
Firefox < 88.0.1 and Firefox for Android < 88.1.3 - Race Condition in Web Render Component Destruction
Jun 24, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-29951 MEDIUM
Firefox < 87.0, Firefox ESR < 78.10.1, Thunderbird < 78.10.1 - Improper Privilege Management in Maintenance Service
Jun 24, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29950 HIGH
Thunderbird < 78.8.1 - Cleartext Storage of Sensitive OpenPGP Key in Memory
Jun 24, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-29949 HIGH
Thunderbird < 78.9.1 - Uncontrolled Search Path Element via OTR Library Loading
Jun 24, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-29948 LOW
Thunderbird < 78.10 - Race Condition via Signature File Replacement
Jun 24, 2021
CVSS 2.5
EPSS 0.00
CVE-2021-29947 HIGH
Firefox < 88.0 - Out-of-bounds Write
Jun 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-29946 HIGH
Firefox < 88.0 and Firefox ESR < 78.10 - Port Blocking Bypass via Alt-Svc Header Integer Overflow
Jun 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-29945 MEDIUM
Firefox ESR <78.10 & Firefox <88 - Memory Corruption
Jun 24, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-29944 MEDIUM
Firefox < 88.0 - HTML Injection in Reader View
Jun 24, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-24002 HIGH
Firefox < 88.0 and Firefox ESR < 78.10 - Command Injection via FTP URL Newline Encoding
Jun 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-24001 MEDIUM
Firefox < 88.0 - Unauthorized Session History Manipulation via Compromised Content Process
Jun 24, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-24000 LOW
Firefox < 88.0 - Race Condition via requestPointerLock and setTimeout
Jun 24, 2021
CVSS 3.1
EPSS 0.00
CVE-2021-23999 HIGH
Firefox ESR <78.10, Thunderbird <78.10, Firefox <88 - Info Disclosure
Jun 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-23998 MEDIUM
Firefox < 88.0 and Firefox ESR < 78.10 - Insufficient Verification of Data Authenticity via Window Navigation
Jun 24, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-23997 HIGH
Firefox < 88.0 - Use-After-Free via Font Cache Data Type Conversion
Jun 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-23996 MEDIUM
Firefox < 88.0 - Spoofing Attack via 3D CSS and JavaScript
Jun 24, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-23995 HIGH
Firefox ESR < 78.10 & Thunderbird < 78.10 - Use After Free
Jun 24, 2021
CVSS 8.8
EPSS 0.01
Products
firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 19 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2
Quick Filters
Critical CVEs With Exploits In CISA KEV