mozilla

3,565 tracked vulnerabilities.

CVE-2018-12405 CRITICAL
Mozilla Firefox <64 - Memory Corruption
Feb 28, 2019
CVSS 9.8
EPSS 0.10
CVE-2018-12403 MEDIUM
Firefox < 63.0 - Mixed Content Warning Bypass via Favicon
Feb 28, 2019
CVSS 5.3
EPSS 0.01
CVE-2018-12402 MEDIUM
WebBrowserPersist - Info Disclosure
Feb 28, 2019
CVSS 6.5
EPSS 0.00
CVE-2018-12401 HIGH
Firefox < 63.0 - Denial of Service via Special Resource URI with Optional Parameters
Feb 28, 2019
CVSS 7.5
EPSS 0.01
CVE-2018-12400 MEDIUM
Firefox for Android < 63.0 - Exposure of Sensitive Information via Favicon Caching in Private Browsing Mode
Feb 28, 2019
CVSS 5.3
EPSS 0.00
CVE-2018-12399 MEDIUM
Firefox < 63.0 - Improper Authentication via Protocol Handler Title Spoofing
Feb 28, 2019
CVSS 4.3
EPSS 0.00
CVE-2018-12398 MEDIUM
Firefox < 63.0 - Content Security Policy Bypass via Reflected chrome: URI
Feb 28, 2019
CVSS 6.5
EPSS 0.00
CVE-2018-12397 HIGH
Firefox < 63 - Unauthorized Local File Access via WebExtension
Feb 28, 2019
CVSS 7.1
EPSS 0.00
CVE-2018-12396 MEDIUM
Firefox ESR < 60.3 - Privilege Escalation
Feb 28, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-12395 HIGH
Firefox < 63.0 and Firefox ESR < 60.3 - Domain Restriction Bypass via Host Header Rewriting
Feb 28, 2019
CVSS 7.5
EPSS 0.03
CVE-2018-12393 HIGH
Firefox <63, Firefox ESR <60.3, Thunderbird <60.3 - Buffer Overflow
Feb 28, 2019
CVSS 7.5
EPSS 0.06
CVE-2018-12392 CRITICAL
Firefox <63, Firefox ESR <60.3, Thunderbird <60.3 - Memory Corruption
Feb 28, 2019
CVSS 9.8
EPSS 0.08
CVE-2018-12391 HIGH
Firefox for Android < 63.0 - Incorrect Authorization via HTTP Live Stream Playback
Feb 28, 2019
CVSS 8.8
EPSS 0.01
CVE-2018-12390 CRITICAL
Mozilla Firefox <63 - Memory Corruption
Feb 28, 2019
CVSS 9.8
EPSS 0.04
CVE-2018-12389 HIGH
Mozilla Firefox ESR <60.3 - Memory Corruption
Feb 28, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-12388 HIGH
Mozilla Firefox <63 - Memory Corruption
Feb 28, 2019
CVSS 8.8
EPSS 0.01
CVE-2018-18506 MEDIUM
Mozilla Firefox < 65 - Proxy Auto-Configuration Localhost Request Bypass
Feb 05, 2019
CVSS 5.9
EPSS 0.02
CVE-2018-18505 CRITICAL
Firefox < 65 and Thunderbird < 60.5 - Sandbox Escape via IPC Channel Authentication Bypass
Feb 05, 2019
CVSS 10.0
EPSS 0.03
CVE-2018-18504 CRITICAL
Firefox < 65.0 - Out-of-Bounds Read in Texture Client Buffer
Feb 05, 2019
CVSS 9.8
EPSS 0.02
CVE-2018-18503 HIGH
Firefox < 65.0 - Use-After-Free via Audio Buffer Compartment Mismatch
Feb 05, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-18502 CRITICAL
Firefox < 65.0 - Memory Corruption
Feb 05, 2019
CVSS 9.8
EPSS 0.03
CVE-2018-18501 CRITICAL
Firefox < 65.0 and Firefox ESR < 60.5 - Memory Corruption
Feb 05, 2019
CVSS 9.8
EPSS 0.08
CVE-2018-18500 CRITICAL
Firefox < 65.0 - Use-After-Free in HTML5 Stream Parser
Feb 05, 2019
CVSS 9.8
EPSS 0.33
CVE-2018-5188 CRITICAL
Firefox <61 - Memory Corruption
Oct 18, 2018
CVSS 9.8
EPSS 0.05
CVE-2018-5187 CRITICAL
Firefox <61 - Memory Corruption
Oct 18, 2018
CVSS 9.8
EPSS 0.02
Products
firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 19 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2
Quick Filters
Critical CVEs With Exploits In CISA KEV