mozilla

3,619 tracked vulnerabilities.

CVE-2026-7322 HIGH
Memory safety bugs fixed in Firefox ESR 115.35.1, Firefox ESR 140.10.1, Thunderbird ESR 140.10.1, Firefox 150.0.1 and Thunderbird 150.0.1
Apr 28, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-7321 CRITICAL
Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component
Apr 28, 2026
CVSS 9.6
EPSS 0.00
CVE-2026-7320 HIGH
Information disclosure due to incorrect boundary conditions in the Audio/Video component
Apr 28, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6786 HIGH
Memory safety bugs fixed in Firefox ESR 140.10, Thunderbird ESR 140.10, Firefox 150 and Thunderbird 150
Apr 26, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6785 HIGH
Memory safety bugs fixed in Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird ESR 140.10, Firefox 150 and Thunderbird 150
Apr 26, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-6784 HIGH
Memory safety bugs fixed in Firefox 150 and Thunderbird 150
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6783 MEDIUM
Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6782 HIGH
Information disclosure in the IP Protection component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6781 HIGH
Denial-of-service in the Audio/Video: Playback component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6780 HIGH
Denial-of-service in the Audio/Video: Playback component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6779 MEDIUM
Mozilla Firefox and Thunderbird 150 - JavaScript Engine Memory Safety Issue
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6778 MEDIUM
Invalid pointer in the Audio/Video: Playback component
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6777 MEDIUM
Mozilla Firefox and Thunderbird 150 - DNS Component Input Validation Issue
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6776 HIGH
Incorrect boundary conditions in the WebRTC: Networking component
Apr 21, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-6775 MEDIUM
Incorrect boundary conditions in the WebRTC component
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6774 MEDIUM
Mitigation bypass in the DOM: Security component
Apr 21, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-6773 HIGH
Denial-of-service due to integer overflow in the Graphics: WebGPU component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6772 HIGH
Incorrect boundary conditions in the Libraries component in NSS
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6771 CRITICAL
Mitigation bypass in the DOM: Security component
Apr 21, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-6770 MEDIUM
Mozilla Firefox and Thunderbird 140.10 and 150 - IndexedDB Information Disclosure
Apr 21, 2026
CVSS 6.5
EPSS 0.05
CVE-2026-6769 HIGH
Privilege escalation in the Debugger component
Apr 21, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-6768 CRITICAL
Mitigation bypass in the Networking: Cookies component
Apr 21, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-6767 MEDIUM
Mozilla Firefox and Thunderbird 115.35, 140.10, and 150 - NSS Memory Safety Issue
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6766 HIGH
Incorrect boundary conditions in the Libraries component in NSS
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6765 MEDIUM
Information disclosure in the Form Autofill component
Apr 21, 2026
CVSS 5.3
EPSS 0.00