mozilla
3,621 tracked vulnerabilities.
CVE-2019-17002
MEDIUM
Firefox < 70.0 - Security Feature Bypass via Drag-and-Drop Link Handling
Jan 08, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-17001
MEDIUM
Firefox < 70 - Cross-Site Scripting via Object Tag CSP Bypass
Jan 08, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-17000
MEDIUM
Firefox < 70.0 - Cross-Site Scripting via Object Tag Data URI CSP Bypass
Jan 08, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-11765
MEDIUM
Firefox < 70.0 - Permission Bypass via Compromised Content Process
Jan 08, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-11764
HIGH
Mozilla Firefox <70 - Memory Corruption
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-11763
MEDIUM
Firefox <70, Thunderbird <68.2, Firefox ESR <68.2 - XSS
Jan 08, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-11762
MEDIUM
Firefox <70, Thunderbird <68.2, Firefox ESR <68.2 - CSRF
Jan 08, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-11761
MEDIUM
Firefox < 70, Thunderbird < 68.2, Firefox ESR < 68.2 - CSRF
Jan 08, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-11760
HIGH
Firefox < 70, Thunderbird < 68.2, Firefox ESR < 68.2 - Buffer Overflow
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-11759
HIGH
Firefox < 70, Thunderbird < 68.2, Firefox ESR < 68.2 - Buffer Overflow
Jan 08, 2020
CVSS 8.8
EPSS 0.02
CVE-2019-11758
HIGH
Firefox < 69.0, Firefox ESR < 68.2, Thunderbird < 68.2 - Out-of-bounds Write in Accessibility Engine
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-11757
HIGH
Firefox < 70, Thunderbird < 68.2, Firefox ESR < 68.2 - Use After Free
Jan 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-11756
HIGH
Firefox < 71.0 - Use-After-Free in Soft Token Session Objects
Jan 08, 2020
CVSS 8.8
EPSS 0.02
CVE-2019-11745
HIGH
Thunderbird <68.3-Firefox <71 - Buffer Overflow
Jan 08, 2020
CVSS 8.8
EPSS 0.03
CVE-2019-11755
HIGH
Thunderbird <68.1.1 - Info Disclosure
Sep 27, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-11754
MEDIUM
Firefox < 69.0.1 - Pointer Lock Spoofing via Missing User Notification
Sep 27, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-11753
HIGH
Firefox < 69 and Firefox ESR < 60.9 and >=68.0 < 68.1 - Privilege Escalation via Unprotected Installer Location
Sep 27, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-11752
HIGH
Firefox < 69 and Firefox ESR < 60.9 - Use-After-Free in IndexedDB Key Conversion
Sep 27, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-11751
HIGH
Firefox < 69.0 and Firefox ESR < 68.1.0 - Argument Injection via Logging Parameters
Sep 27, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-11750
MEDIUM
Firefox < 69.0 and Firefox ESR < 68.1.0 - Type Confusion in Spidermonkey
Sep 27, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-11749
MEDIUM
Firefox < 69.0 and Firefox ESR < 68.1.0 - Unauthenticated Device Fingerprinting via WebRTC getUserMedia API
Sep 27, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-11748
MEDIUM
Firefox < 69.0 and Firefox ESR < 68.1.0 - Improper Preservation of Permissions in WebRTC
Sep 27, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-11747
MEDIUM
Mozilla Firefox < 69 and Firefox ESR < 68.1 - HSTS Setting Removal
Sep 27, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-11746
HIGH
Firefox < 69 and Firefox ESR < 60.9, 68.1 - Use-After-Free in Video Element Handling
Sep 27, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-11744
MEDIUM
Firefox <69, Thunderbird <68.1, Thunderbird <60.9 - XSS
Sep 27, 2019
CVSS 6.1
EPSS 0.01
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters