mozilla
3,621 tracked vulnerabilities.
CVE-2018-18495
MEDIUM
Firefox < 64.0 - Incorrect Permission Assignment for Critical Resource via WebExtension Content Scripts
Feb 28, 2019
CVSS 6.5
EPSS 0.02
CVE-2018-18494
MEDIUM
Firefox < 64 - Same-Origin Policy Bypass via performance.getEntries()
Feb 28, 2019
CVSS 6.5
EPSS 0.02
CVE-2018-18493
CRITICAL
Firefox < 64 and Thunderbird < 60.4 - Memory Corruption via Skia Buffer Offset Calculation
Feb 28, 2019
CVSS 9.8
EPSS 0.05
CVE-2018-18492
CRITICAL
Firefox < 64 - Use-After-Free in Selection Element Deletion
Feb 28, 2019
CVSS 9.8
EPSS 0.10
CVE-2018-12407
CRITICAL
Firefox < 64.0 - Buffer Overflow in ANGLE VertexBuffer11 Module
Feb 28, 2019
CVSS 9.8
EPSS 0.03
CVE-2018-12406
HIGH
Mozilla Firefox <64 - Memory Corruption
Feb 28, 2019
CVSS 8.8
EPSS 0.01
CVE-2018-12405
CRITICAL
Mozilla Firefox <64 - Memory Corruption
Feb 28, 2019
CVSS 9.8
EPSS 0.03
CVE-2018-12403
MEDIUM
Firefox < 63.0 - Mixed Content Warning Bypass via Favicon
Feb 28, 2019
CVSS 5.3
EPSS 0.02
CVE-2018-12402
MEDIUM
WebBrowserPersist - Info Disclosure
Feb 28, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-12401
HIGH
Firefox < 63.0 - Denial of Service via Special Resource URI with Optional Parameters
Feb 28, 2019
CVSS 7.5
EPSS 0.02
CVE-2018-12400
MEDIUM
Firefox for Android < 63.0 - Exposure of Sensitive Information via Favicon Caching in Private Browsing Mode
Feb 28, 2019
CVSS 5.3
EPSS 0.02
CVE-2018-12399
MEDIUM
Firefox < 63.0 - Improper Authentication via Protocol Handler Title Spoofing
Feb 28, 2019
CVSS 4.3
EPSS 0.01
CVE-2018-12398
MEDIUM
Firefox < 63.0 - Content Security Policy Bypass via Reflected chrome: URI
Feb 28, 2019
CVSS 6.5
EPSS 0.02
CVE-2018-12397
HIGH
Firefox < 63 - Unauthorized Local File Access via WebExtension
Feb 28, 2019
CVSS 7.1
EPSS 0.00
CVE-2018-12396
MEDIUM
Firefox ESR < 60.3 - Privilege Escalation
Feb 28, 2019
CVSS 6.5
EPSS 0.02
CVE-2018-12395
HIGH
Firefox < 63.0 and Firefox ESR < 60.3 - Domain Restriction Bypass via Host Header Rewriting
Feb 28, 2019
CVSS 7.5
EPSS 0.03
CVE-2018-12393
HIGH
Firefox <63, Firefox ESR <60.3, Thunderbird <60.3 - Buffer Overflow
Feb 28, 2019
CVSS 7.5
EPSS 0.04
CVE-2018-12392
CRITICAL
Firefox <63, Firefox ESR <60.3, Thunderbird <60.3 - Memory Corruption
Feb 28, 2019
CVSS 9.8
EPSS 0.03
CVE-2018-12391
HIGH
Firefox for Android < 63.0 - Incorrect Authorization via HTTP Live Stream Playback
Feb 28, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-12390
CRITICAL
Mozilla Firefox <63 - Memory Corruption
Feb 28, 2019
CVSS 9.8
EPSS 0.03
CVE-2018-12389
HIGH
Mozilla Firefox ESR <60.3 - Memory Corruption
Feb 28, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-12388
HIGH
Mozilla Firefox <63 - Memory Corruption
Feb 28, 2019
CVSS 8.8
EPSS 0.01
CVE-2018-18506
MEDIUM
Mozilla Firefox < 65 - Proxy Auto-Configuration Localhost Request Bypass
Feb 05, 2019
CVSS 5.9
EPSS 0.02
CVE-2018-18505
CRITICAL
Firefox < 65 and Thunderbird < 60.5 - Sandbox Escape via IPC Channel Authentication Bypass
Feb 05, 2019
CVSS 10.0
EPSS 0.05
CVE-2018-18504
CRITICAL
Firefox < 65.0 - Out-of-Bounds Read in Texture Client Buffer
Feb 05, 2019
CVSS 9.8
EPSS 0.02
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters