mozilla
3,565 tracked vulnerabilities.
CVE-2020-12420
HIGH
Firefox ESR < 68.10, Firefox < 78, Thunderbird < 68.10.0 - Use Afte...
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12419
HIGH
Firefox ESR < 68.10 - Use After Free
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12418
MEDIUM
Firefox ESR < 68.10 - Memory Corruption
Jul 09, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-12417
HIGH
Firefox < 78.0 - Memory Corruption via JavaScript ValueTag Confusion
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12416
HIGH
Firefox < 78.0 - Use-After-Free in VideoStreamEncoder
Jul 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-12415
MEDIUM
Firefox < 78.0 - Incorrect Default Permissions via Manifest URL Handling
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12414
MEDIUM
Firefox for iOS < 27 - Info Disclosure
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12412
MEDIUM
Firefox < 70.0 - Address Bar Spoofing via History API Navigation
Jul 09, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-12411
HIGH
Mozilla Firefox <77 - Memory Corruption
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12410
HIGH
Mozilla Firefox <77 - Memory Corruption
Jul 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-12409
HIGH
Firefox < 77.0 - URL Spoofing via Blank Character Rendering
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12408
MEDIUM
Firefox < 77.0 - Address Bar Spoofing via Character Injection
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12407
MEDIUM
Firefox < 77.0 - Out-of-bounds Read in WebRender
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12406
HIGH
Firefox < 77.0 - Memory Corruption via Unboxed Object Type Confusion
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12405
MEDIUM
Thunderbird <68.9.0-Firefox <77-Firefox ESR <68.9 - RCE
Jul 09, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-12404
MEDIUM
Firefox for iOS <26 - Info Disclosure
Jul 09, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-12402
MEDIUM
Firefox < 78.0 - Side-Channel Information Disclosure during RSA Key Generation
Jul 09, 2020
CVSS 4.4
EPSS 0.00
CVE-2020-12399
MEDIUM
Firefox < 77.0 and Firefox ESR < 68.9.0 - Timing Side-Channel in DSA Signature Verification
Jul 09, 2020
CVSS 4.4
EPSS 0.00
CVE-2020-12398
HIGH
Thunderbird <68.9.0 - Info Disclosure
Jul 09, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-12424
MEDIUM
Firefox < 78.0 - Permission Prompt Bypass via WebRTC URI
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-13790
HIGH
libjpeg-turbo 2.0.4 and mozjpeg 4.0.0 - Heap-Based Buffer Over-Read in get_rgb_row
Jun 03, 2020
CVSS 8.1
EPSS 0.00
CVE-2020-6831
CRITICAL
Firefox < 76.0 and Firefox ESR < 68.8.0 - Out-of-bounds Write via SCTP Chunk Parsing
May 26, 2020
CVSS 9.8
EPSS 0.06
CVE-2020-6830
HIGH
Firefox for iOS < 25.0 - Exposure of Sensitive Information via Bridging Token Leak
May 26, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-12392
MEDIUM
Firefox ESR < 68.8 - Info Disclosure
May 26, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-12391
HIGH
Firefox < 76.0 - Cross-Origin Script Execution via data: URL in OBJECT Element
May 26, 2020
CVSS 7.5
EPSS 0.01
Products
firefox 3,130
thunderbird 1,729
seamonkey 704
firefox_esr 488
Firefox 387
Thunderbird 359
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
firefox_focus 20
firefox_mobile 20
Firefox for iOS 19
focus 15
firefox_os 14
nss 6
Focus for iOS 5
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters