mozilla
3,565 tracked vulnerabilities.
CVE-2019-17025
HIGH
Firefox < 72.0 - Out-of-bounds Write
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-17024
HIGH
Firefox < 72.0 and Firefox ESR < 68.4 - Out-of-bounds Write
Jan 08, 2020
CVSS 8.8
EPSS 0.03
CVE-2019-17023
MEDIUM
Firefox < 72.0 - Denial of Service via TLS State Machine Mismanagement
Jan 08, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-17022
MEDIUM
Firefox < 72.0 and Firefox ESR < 68.4 - Cross-Site Scripting via Style Tag Pasting
Jan 08, 2020
CVSS 6.1
EPSS 0.04
CVE-2019-17021
MEDIUM
Firefox < 72.0 and Firefox ESR < 68.4 - Heap Address Disclosure via Content Process Initialization Race Condition
Jan 08, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-17020
MEDIUM
Firefox < 72.0 - Content Security Policy Bypass via XSL Stylesheet
Jan 08, 2020
CVSS 6.5
EPSS 0.00
CVE-2019-17019
HIGH
Firefox < 72.0 - Unauthenticated Arbitrary Code Execution via Python File MIME Handling
Jan 08, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-17018
MEDIUM
Firefox < 72.0 - Unauthorized Sensitive Information Exposure via Windows Keyboard Suggestions
Jan 08, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-17017
HIGH
Firefox < 72.0 and Firefox ESR < 68.4 - Type Confusion
Jan 08, 2020
CVSS 8.8
EPSS 0.03
CVE-2019-17016
MEDIUM
Firefox < 72.0 and Firefox ESR < 68.4 - Cross-Site Scripting via Style Tag Pasting
Jan 08, 2020
CVSS 6.1
EPSS 0.03
CVE-2019-17015
HIGH
Firefox < 72.0 and Firefox ESR < 68.4 - Out-of-bounds Write via Content Process Initialization
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-17014
HIGH
Firefox < 71.0 - Cross-Origin Information Leak via Dragged Image
Jan 08, 2020
CVSS 7.4
EPSS 0.00
CVE-2019-17013
HIGH
Firefox < 71.0 - Use-After-Free
Jan 08, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-17012
HIGH
Firefox < 71.0 and Firefox ESR < 68.3 - Out-of-bounds Write
Jan 08, 2020
CVSS 8.8
EPSS 0.02
CVE-2019-17011
HIGH
Firefox < 71.0 and Firefox ESR < 68.3 - Use-After-Free via DocShell Race Condition
Jan 08, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-17010
HIGH
Firefox <71.0, ESR <68.3, Thunderbird <68.3 - Use-After-Free via Race Condition
Jan 08, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-17009
HIGH
Thunderbird <68.3, Firefox ESR <68.3, Firefox <71 - Info Disclosure
Jan 08, 2020
CVSS 7.8
EPSS 0.00
CVE-2019-17008
HIGH
Firefox < 71.0, Firefox ESR < 68.3, Thunderbird < 68.3 - Use-After-Free in Nested Workers
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-17005
HIGH
Firefox < 71.0 and Firefox ESR < 68.3 - Out-of-bounds Write in Plain Text Serializer
Jan 08, 2020
CVSS 8.8
EPSS 0.03
CVE-2019-17002
MEDIUM
Firefox < 70.0 - Security Feature Bypass via Drag-and-Drop Link Handling
Jan 08, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-17001
MEDIUM
Firefox < 70 - Cross-Site Scripting via Object Tag CSP Bypass
Jan 08, 2020
CVSS 6.1
EPSS 0.00
CVE-2019-17000
MEDIUM
Firefox < 70.0 - Cross-Site Scripting via Object Tag Data URI CSP Bypass
Jan 08, 2020
CVSS 6.1
EPSS 0.00
CVE-2019-11765
MEDIUM
Firefox < 70.0 - Permission Bypass via Compromised Content Process
Jan 08, 2020
CVSS 6.5
EPSS 0.00
CVE-2019-11764
HIGH
Mozilla Firefox <70 - Memory Corruption
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-11763
MEDIUM
Firefox <70, Thunderbird <68.2, Firefox ESR <68.2 - XSS
Jan 08, 2020
CVSS 6.1
EPSS 0.02
Products
firefox 3,130
thunderbird 1,729
seamonkey 704
firefox_esr 488
Firefox 387
Thunderbird 359
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
firefox_focus 20
firefox_mobile 20
Firefox for iOS 19
focus 15
firefox_os 14
nss 6
Focus for iOS 5
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters