mozilla

3,565 tracked vulnerabilities.

CVE-2020-26979 MEDIUM
Firefox < 84.0 - URL Spoofing via Address Bar Event Capture
Jan 07, 2021
CVSS 6.1
EPSS 0.00
CVE-2020-26978 MEDIUM
Firefox <84, Thunderbird <78.6, Firefox ESR <78.6 - Info Disclosure
Jan 07, 2021
CVSS 6.1
EPSS 0.00
CVE-2020-26977 MEDIUM
Firefox < 84.0 - URL Spoofing via Unresponsive Port Connection
Jan 07, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-26976 MEDIUM
Firefox < 84.0 - Service Worker Request Interception via Insecure Framing
Jan 07, 2021
CVSS 6.5
EPSS 0.02
CVE-2020-26975 MEDIUM
Firefox < 84.0 - Arbitrary Header Injection via Intent Broadcast
Jan 07, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-26974 HIGH
Firefox <84, Thunderbird <78.6, Firefox ESR <78.6 - Memory Corruption
Jan 07, 2021
CVSS 8.8
EPSS 0.01
CVE-2020-26973 HIGH
Firefox <84, Thunderbird <78.6, Firefox ESR <78.6 - Info Disclosure
Jan 07, 2021
CVSS 8.8
EPSS 0.00
CVE-2020-26972 CRITICAL
Firefox < 84.0 - Use-After-Free in WebGL IPC Actor
Jan 07, 2021
CVSS 9.8
EPSS 0.01
CVE-2020-26971 HIGH
Firefox <84, Thunderbird <78.6, Firefox ESR <78.6 - Buffer Overflow
Jan 07, 2021
CVSS 8.8
EPSS 0.01
CVE-2020-26970 HIGH
Thunderbird <78.5.1 - Buffer Overflow
Dec 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-26969 HIGH
Mozilla Firefox <83 - Memory Corruption
Dec 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-26968 HIGH
Mozilla Firefox <83 - Memory Corruption
Dec 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-26967 MEDIUM
Firefox < 83.0 - Unauthenticated Unexpected Behavior via Mutation Observer Confusion
Dec 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-26966 MEDIUM
Firefox <83, Firefox ESR <78.5, Thunderbird <78.5 - Info Disclosure
Dec 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-26965 MEDIUM
Firefox <83 & Firefox ESR <78.5 - Info Disclosure
Dec 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-26964 MEDIUM
Firefox for Android < Android 6.0 - Privilege Escalation
Dec 09, 2020
CVSS 6.8
EPSS 0.00
CVE-2020-26963 MEDIUM
Firefox < 83.0 - Denial of Service via Repeated History and Location API Calls
Dec 09, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-26962 MEDIUM
Firefox < 83.0 - Cross-Origin Iframe Login Form Autofill Spoofing
Dec 09, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-26961 MEDIUM
Firefox <83, Firefox ESR <78.5, Thunderbird <78.5 - SSRF
Dec 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-26960 HIGH
Firefox < 83.0 and Firefox ESR < 78.5 - Use-After-Free via nsTArray Compact Method
Dec 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-26959 HIGH
Firefox <83, Firefox ESR <78.5, Thunderbird <78.5 - Use After Free
Dec 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-26958 MEDIUM
Firefox < 83.0, Firefox ESR < 78.5, and Thunderbird < 78.5 - Cross-Site Scripting via ServiceWorker Cached Response
Dec 09, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-26957 MEDIUM
Firefox for Android < 83.0 - Certificate Revocation Bypass via Missing OneCRL Service Initialization
Dec 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-26956 MEDIUM
Firefox <83 - Firefox ESR <78.5 - Thunderbird <78.5 - XSS
Dec 09, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-26955 MEDIUM
Firefox for Android < 83.0 - Cookie Reuse Across Private and Non-Private Browsing Modes
Dec 09, 2020
CVSS 6.5
EPSS 0.00
Products
firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 19 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2
Quick Filters
Critical CVEs With Exploits In CISA KEV