mozilla
3,565 tracked vulnerabilities.
CVE-2017-7799
MEDIUM
Firefox < 55.0 - Cross-Site Scripting via about:webrtc Page
Jun 11, 2018
CVSS 6.1
EPSS 0.00
CVE-2017-7798
HIGH
Debian Linux < 55.0 - Code Injection
Jun 11, 2018
CVSS 8.8
EPSS 0.04
CVE-2017-7797
HIGH
Firefox < 55.0 - Origin Validation Error via Response Header Name Interning
Jun 11, 2018
CVSS 7.5
EPSS 0.00
CVE-2017-7796
MEDIUM
Firefox < 55.0 - Arbitrary File Deletion via Windows Updater Logger Path Manipulation
Jun 11, 2018
CVSS 4.7
EPSS 0.00
CVE-2017-7794
HIGH
Firefox < 55.0 - Incorrect Default Permissions via Sandbox Broker
Jun 11, 2018
CVSS 7.8
EPSS 0.00
CVE-2017-7793
CRITICAL
Debian Linux < 52.4.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7792
CRITICAL
Debian Linux < 52.3.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.07
CVE-2017-7791
MEDIUM
Debian Linux < 52.3.0 - Improper Input Validation
Jun 11, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-7790
HIGH
Firefox < 55.0 - Unprotected User Data Exposure via Crash Reporter Registry Key Handling
Jun 11, 2018
CVSS 7.5
EPSS 0.00
CVE-2017-7789
MEDIUM
Firefox < 55.0 - HTTP Strict Transport Security Bypass via Duplicate STS Headers
Jun 11, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-7788
CRITICAL
Firefox < 55.0 - Content Security Policy Bypass via Sandboxed Iframe with srcdoc
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7787
HIGH
Debian Linux < 52.3 - Information Disclosure
Jun 11, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-7786
CRITICAL
Debian Linux < 52.1.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.09
CVE-2017-7785
CRITICAL
Debian Linux < 52.3.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.08
CVE-2017-7784
CRITICAL
Debian Linux < 52.3.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.05
CVE-2017-7783
HIGH
Firefox < 55.0 - Denial of Service via Long Username in URL Authentication Prompt
Jun 11, 2018
CVSS 7.5
EPSS 0.07
CVE-2017-7782
MEDIUM
Firefox < 55 and Thunderbird < 52.3 - DEP Bypass via WindowsDllDetourPatcher
Jun 11, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-7781
MEDIUM
Firefox < 55.0 - Man-in-the-Middle Shared Secret Computation Flaw via Elliptic Curve Point Addition
Jun 11, 2018
CVSS 5.9
EPSS 0.01
CVE-2017-7780
CRITICAL
Firefox < 55.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7779
CRITICAL
Debian Linux < 55.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.01
CVE-2017-7778
CRITICAL
Firefox < 54 and Firefox ESR < 52.2 - Multiple Memory Corruption Vulnerabilities in Graphite 2 Library
Jun 11, 2018
CVSS 9.8
EPSS 0.01
CVE-2017-7770
MEDIUM
Firefox < 54.0 - Address Bar Spoofing via Fullscreen Mode
Jun 11, 2018
CVSS 5.9
EPSS 0.00
CVE-2017-7768
MEDIUM
Firefox < 52.2.0 - Unauthenticated Exposure of Sensitive Information via Maintenance Service
Jun 11, 2018
CVSS 5.5
EPSS 0.00
CVE-2017-7767
MEDIUM
Firefox < 54 - Unauthenticated Arbitrary File Overwrite via Maintenance Service
Jun 11, 2018
CVSS 5.5
EPSS 0.00
CVE-2017-7766
HIGH
Firefox < 54 - Arbitrary File Execution and Deletion via Updater.ini Manipulation
Jun 11, 2018
CVSS 7.8
EPSS 0.00
Products
firefox 3,130
thunderbird 1,729
seamonkey 704
firefox_esr 488
Firefox 387
Thunderbird 359
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
firefox_focus 20
firefox_mobile 20
Firefox for iOS 19
focus 15
firefox_os 14
nss 6
Focus for iOS 5
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters