mozilla
3,619 tracked vulnerabilities.
CVE-2026-7322
HIGH
Memory safety bugs fixed in Firefox ESR 115.35.1, Firefox ESR 140.10.1, Thunderbird ESR 140.10.1, Firefox 150.0.1 and Thunderbird 150.0.1
Apr 28, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-7321
CRITICAL
Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component
Apr 28, 2026
CVSS 9.6
EPSS 0.00
CVE-2026-7320
HIGH
Information disclosure due to incorrect boundary conditions in the Audio/Video component
Apr 28, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6786
HIGH
Memory safety bugs fixed in Firefox ESR 140.10, Thunderbird ESR 140.10, Firefox 150 and Thunderbird 150
Apr 26, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6785
HIGH
Memory safety bugs fixed in Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird ESR 140.10, Firefox 150 and Thunderbird 150
Apr 26, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-6784
HIGH
Memory safety bugs fixed in Firefox 150 and Thunderbird 150
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6783
MEDIUM
Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6782
HIGH
Information disclosure in the IP Protection component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6781
HIGH
Denial-of-service in the Audio/Video: Playback component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6780
HIGH
Denial-of-service in the Audio/Video: Playback component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6779
MEDIUM
Mozilla Firefox and Thunderbird 150 - JavaScript Engine Memory Safety Issue
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6778
MEDIUM
Invalid pointer in the Audio/Video: Playback component
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6777
MEDIUM
Mozilla Firefox and Thunderbird 150 - DNS Component Input Validation Issue
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6776
HIGH
Incorrect boundary conditions in the WebRTC: Networking component
Apr 21, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-6775
MEDIUM
Incorrect boundary conditions in the WebRTC component
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6774
MEDIUM
Mitigation bypass in the DOM: Security component
Apr 21, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-6773
HIGH
Denial-of-service due to integer overflow in the Graphics: WebGPU component
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6772
HIGH
Incorrect boundary conditions in the Libraries component in NSS
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6771
CRITICAL
Mitigation bypass in the DOM: Security component
Apr 21, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-6770
MEDIUM
Mozilla Firefox and Thunderbird 140.10 and 150 - IndexedDB Information Disclosure
Apr 21, 2026
CVSS 6.5
EPSS 0.05
CVE-2026-6769
HIGH
Privilege escalation in the Debugger component
Apr 21, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-6768
CRITICAL
Mitigation bypass in the Networking: Cookies component
Apr 21, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-6767
MEDIUM
Mozilla Firefox and Thunderbird 115.35, 140.10, and 150 - NSS Memory Safety Issue
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-6766
HIGH
Incorrect boundary conditions in the Libraries component in NSS
Apr 21, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6765
MEDIUM
Information disclosure in the Form Autofill component
Apr 21, 2026
CVSS 5.3
EPSS 0.00
Products
firefox 3,179
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 432
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 22
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters