mozilla
3,565 tracked vulnerabilities.
CVE-2017-7824
CRITICAL
Redhat Enterprise Linux Aus < 52.4.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.12
CVE-2017-7823
MEDIUM
Redhat Enterprise Linux Desktop < 52.4.0 - XSS
Jun 11, 2018
CVSS 5.4
EPSS 0.01
CVE-2017-7822
MEDIUM
Firefox < 56 - AES-GCM Authentication Key Exposure via 0-Length IV
Jun 11, 2018
CVSS 5.3
EPSS 0.00
CVE-2017-7821
CRITICAL
Firefox < 56 - Unauthenticated Arbitrary File Download and Open via WebExtensions
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-7820
MEDIUM
Firefox < 56 - Xray Wrapper Bypass via instanceof Operator
Jun 11, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-7819
CRITICAL
Redhat Enterprise Linux Desktop < 52.4.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.07
CVE-2017-7818
CRITICAL
Redhat Enterprise Linux Desktop < 52.4.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.07
CVE-2017-7817
MEDIUM
Firefox < 56 - Spoofing via Fullscreen Mode Address Bar
Jun 11, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-7816
MEDIUM
Firefox < 56 - Privileged URL Access via WebExtension Popup
Jun 11, 2018
CVSS 5.3
EPSS 0.00
CVE-2017-7815
MEDIUM
Firefox < 56 - Modal Dialog Origin Spoofing via Data URL in Iframe
Jun 11, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-7814
HIGH
Redhat Enterprise Linux Desktop < 52.4.0 - Improper Input Validation
Jun 11, 2018
CVSS 7.8
EPSS 0.00
CVE-2017-7813
HIGH
Firefox < 56 - Out-of-bounds Read in JavaScript Parser
Jun 11, 2018
CVSS 8.2
EPSS 0.01
CVE-2017-7812
MEDIUM
Firefox < 56 - Unauthorized File Access via Drag-and-Drop to Browser UI
Jun 11, 2018
CVSS 5.3
EPSS 0.00
CVE-2017-7811
CRITICAL
Firefox < 56.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-7810
CRITICAL
Debian Linux < 56.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7809
CRITICAL
Debian Linux < 55.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7808
MEDIUM
Firefox < 55.0 - Cross-Origin Information Leak via CSP frame-ancestors Path Comparison
Jun 11, 2018
CVSS 5.3
EPSS 0.00
CVE-2017-7807
HIGH
Debian Linux < 55.0 - Improper Input Validation
Jun 11, 2018
CVSS 8.1
EPSS 0.01
CVE-2017-7806
HIGH
Firefox < 55.0 - Use-After-Free in Layer Manager via SVG Rendering
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-7805
HIGH
Firefox < 56 and ESR < 52.4 - Use-After-Free in TLS 1.2 Handshake Hash Calculation
Jun 11, 2018
CVSS 7.5
EPSS 0.03
CVE-2017-7804
HIGH
Firefox < 55 and Thunderbird < 52.3 - Memory Protection Bypass via WindowsDllDetourPatcher Destructor
Jun 11, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-7803
HIGH
Redhat Enterprise Linux Desktop - Improper Privilege Management
Jun 11, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-7802
CRITICAL
Debian Linux < 55.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7801
CRITICAL
Debian Linux < 55.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7800
CRITICAL
Debian Linux < 55.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.04
Products
firefox 3,130
thunderbird 1,729
seamonkey 704
firefox_esr 488
Firefox 387
Thunderbird 359
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
firefox_focus 20
firefox_mobile 20
Firefox for iOS 19
focus 15
firefox_os 14
nss 6
Focus for iOS 5
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters